From 9178ecbab0239dd2632e03f64ef2494a755a243f Mon Sep 17 00:00:00 2001
From: Tom Eastep <teastep@shorewall.net>
Date: Sun, 12 May 2013 10:38:44 -0700
Subject: [PATCH] Suppress superfluous ACCEPT rule when 'lo' is attached to a
 'local' zone.

Signed-off-by: Tom Eastep <teastep@shorewall.net>
---
 Shorewall/Perl/Shorewall/Misc.pm | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/Shorewall/Perl/Shorewall/Misc.pm b/Shorewall/Perl/Shorewall/Misc.pm
index ca226e530..fe4b239a4 100644
--- a/Shorewall/Perl/Shorewall/Misc.pm
+++ b/Shorewall/Perl/Shorewall/Misc.pm
@@ -1517,9 +1517,10 @@ sub add_interface_jumps {
     our %input_jump_added;
     our %output_jump_added;
     our %forward_jump_added;
-    my  $lo_jump_added = 0;
     my @interfaces = grep $_ ne '%vserver%', @_;
     my $dummy;
+    my $loref = known_interface('lo');
+    my $lo_jump_added =  $loref && $loref->{options}{local};
     #
     # Add Nat jumps
     #