forked from extern/shorewall_code
Don't apply rate limiting twice in ACCEPT+ rules
Signed-off-by: Tom Eastep <teastep@shorewall.net>
This commit is contained in:
parent
5b77f378e5
commit
8eb3de7db2
@ -1182,9 +1182,9 @@ sub process_rule1 ( $$$$$$$$$$$$$ ) {
|
||||
#
|
||||
# Generate Fixed part of the rule
|
||||
#
|
||||
if ( ( $actiontype & ( NATRULE | NATONLY ) ) == NATRULE ) {
|
||||
if ( $actiontype & ( NATRULE | NONAT ) && ! ( $actiontype & NATONLY ) ) {
|
||||
#
|
||||
# Don't apply rate limiting twice
|
||||
# Either a DNAT, REDIRECT or ACCEPT+ rule; don't apply rate limiting twice
|
||||
#
|
||||
$rule = join( '',
|
||||
do_proto($proto, $ports, $sports),
|
||||
|
Loading…
Reference in New Issue
Block a user