From e2e9cb78e6ed3be2d349e0bf1ba830e0866378ca Mon Sep 17 00:00:00 2001
From: teastep <teastep@fbd18981-670d-0410-9b5c-8dc0c1a9a2bb>
Date: Fri, 20 Apr 2007 00:02:41 +0000
Subject: [PATCH] Handling of NONE policy with SOURCE=all

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@6030 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
---
 Shorewall-perl/Shorewall/Rules.pm | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/Shorewall-perl/Shorewall/Rules.pm b/Shorewall-perl/Shorewall/Rules.pm
index c8ae27790..edf482a36 100644
--- a/Shorewall-perl/Shorewall/Rules.pm
+++ b/Shorewall-perl/Shorewall/Rules.pm
@@ -1187,7 +1187,12 @@ sub process_rule ( $$$$$$$$$ ) {
 			}
 		    }
 		} else {
-		    process_rule1 $target, $zone, $dest , $proto, $ports, $sports, $origdest, $ratelimit, $user;
+		    my $destzone = $dest;
+		    $destzone =~ s/:.*//;
+		    my $policychainref = $filter_table->{"${zone}2${destzone}"}{policychain};
+		    if ( $policychainref->{policy} ne 'NONE' ) {
+			process_rule1 $target, $zone, $dest , $proto, $ports, $sports, $origdest, $ratelimit, $user;
+		    }
 		}
 	    }
 	}