Tweak policies display

2009-11-16 09:30:37 -08:00 · 2009-11-16 09:30:37 -08:00 · dd543a2934
commit dd543a2934
parent f5a019becc
4 changed files with 15 additions and 6 deletions
--- a/Shorewall/Perl/Shorewall/Policy.pm
+++ b/Shorewall/Perl/Shorewall/Policy.pm
@ -280,9 +280,9 @@ sub save_policies() {
 	    my $policyref = $filter_table->{ $chainref->{policychain} };

 	    if ( $policyref->{referenced} ) {
-		emit_unindented "$zone1 \t=> $zone2 is " . $policyref->{policy} . ' using chain ' . $policyref->{name};
-	    } else {
-		emit_unindented "$zone1 \t=> $zone2 is " . $policyref->{policy};
+		emit_unindented "$zone1 \t=>\t$zone2\t" . $policyref->{policy} . ' using chain ' . $policyref->{name};
+	    } elsif ( $zone1 ne $zone2 ) {
+		emit_unindented "$zone1 \t=>\t$zone2\t" . $policyref->{policy};
 	    }
 	}
    }
--- a/Shorewall/releasenotes.txt
+++ b/Shorewall/releasenotes.txt
@ -284,8 +284,11 @@ None.

    Example:

-	net 	=> loc is DROP using chain net2loc
+	net 	=>	loc	DROP using chain net2loc

+    Note that implicit intrazone ACCEPT policies are not displayed for
+    zones associated with a single network where that network
+    doesn't specify 'routeback'.

 ----------------------------------------------------------------------------
                N E W   F E A T U R E S   I N   4 . 4 . 0
--- a/manpages/shorewall.xml
+++ b/manpages/shorewall.xml
@ -1289,7 +1289,10 @@

              <listitem>
                <para>Added in Shorewall 4.4.4. Displays the applicable policy
-                between each pair of zones.</para>
+                between each pair of zones. Note that implicit intrazone
+                ACCEPT policies are not displayed for zones associated with a
+                single network where that network doesn't specify
+                <option>routeback</option>. </para>
              </listitem>
            </varlistentry>

--- a/manpages6/shorewall6.xml
+++ b/manpages6/shorewall6.xml
@ -1097,7 +1097,10 @@

              <listitem>
                <para>Added in Shorewall 4.4.4. Displays the applicable policy
-                between each pair of zones.</para>
+                between each pair of zones. Note that implicit intrazone
+                ACCEPT policies are not displayed for zones associated with a
+                single network where that network doesn't specify
+                <option>routeback</option>. </para>
              </listitem>
            </varlistentry>