Correct handling of audited dispositions.

Signed-off-by: Tom Eastep <teastep@shorewall.net>
2013-02-02 09:30:25 -08:00 · 2013-02-02 09:30:25 -08:00 · cc1054be66
commit cc1054be66
parent c68d4c6e27
2 changed files with 3 additions and 1 deletions
--- a/Shorewall/Perl/Shorewall/Config.pm
+++ b/Shorewall/Perl/Shorewall/Config.pm
@ -5348,7 +5348,7 @@ sub get_configuration( $$$$ ) {
    }

    if ( $val = $config{INVALID_DISPOSITION} ) {
-	if ( $val =~ /^(?:A_)?(?:DROP|ACCEPT)$/ ) {
+	if ( $val =~ /^(?:A_)?DROP$/ ) {
 	    $globals{INVALID_TARGET} = $val;
 	} elsif ( $val eq 'REJECT' ) {
 	    $globals{INVALID_TARGET} = 'reject';
--- a/Shorewall/Perl/Shorewall/Rules.pm
+++ b/Shorewall/Perl/Shorewall/Rules.pm
@ -950,6 +950,8 @@ sub finish_chain_section ($$$) {
 			delete $state{ESTABLISHED};
 		    }
 		    
+		    $target = ensure_audit_chain( $target ) if ( $targets{$target} || 0 ) & AUDIT;
+
 		    add_ijump( $chainref, g => $target, state_imatch $_ );
 		}