From f305da9d0d4ce1e2133fd88aef2440549fa0f82e Mon Sep 17 00:00:00 2001 From: Tom Eastep Date: Thu, 24 Nov 2011 10:57:09 -0800 Subject: [PATCH] Require extended multi-port match for OPTIMIZE 16. Signed-off-by: Tom Eastep --- Shorewall/Perl/Shorewall/Config.pm | 2 ++ 1 file changed, 2 insertions(+) diff --git a/Shorewall/Perl/Shorewall/Config.pm b/Shorewall/Perl/Shorewall/Config.pm index 4ae409b04..9d0d7df7b 100644 --- a/Shorewall/Perl/Shorewall/Config.pm +++ b/Shorewall/Perl/Shorewall/Config.pm @@ -3900,6 +3900,8 @@ sub get_configuration( $$$ ) { fatal_error "Invalid OPTIMIZE value ($config{OPTIMIZE})" unless supplied( $val ) && $val >= 0 && ( $val & ( 4096 ^ -1 ) ) <= 31; + require_capability 'XMULTIPORT', 'OPTIMIZE level 16', 's' if $val & 16; + $globals{MARKING_CHAIN} = $config{MARK_IN_FORWARD_CHAIN} ? 'tcfor' : 'tcpre'; if ( $val = $config{LOGFORMAT} ) {