holm/shorewall_code
1
0
Fork 0
forked from extern/shorewall_code
Code Pull Requests Activity

Work around iptables 1.2.7 bugs

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@204 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2002-08-19 17:33:22 +00:00
parent 7af8a1dbb6
commit bcea92a607
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
Shorewall/firewall
View File

@ -2787,7 +2787,8 @@ add_common_rules() {
logoptions="$LOGPARAMS --log-prefix Shorewall:badpkt:DROP:"
logoptions="$logoptions --log-level $LOGUNCLEAN --log-ip-options"
run_iptables -A badpkt -p tcp -j LOG $logoptions --log-tcp-options
run_iptables -A badpkt -p !tcp -j LOG $logoptions
run_iptables -A logpkt -p tcp -j DROP # Workaround for iptables 1.2.7
run_iptables -A badpkt -j LOG $logoptions
fi
run_iptables -A badpkt -j DROP
@ -2812,7 +2813,8 @@ add_common_rules() {
logoptions="$LOGPARAMS --log-prefix Shorewall:logpkt:LOG:"
logoptions="$logoptions --log-level $LOGUNCLEAN --log-ip-options"
run_iptables -A logpkt -p tcp -j LOG $logoptions --log-tcp-options
run_iptables -A logpkt -p !tcp -j LOG $logoptions
run_iptables -A logpkt -p tcp -j RETURN # Workaround for iptables 1.2.7
run_iptables -A logpkt -j LOG $logoptions
echo "Mangled/Invalid Packet Logging enabled on:"