From 9f332be09e4b313e74a135a847b82f7a1ccfc64a Mon Sep 17 00:00:00 2001
From: Pascal Rigaux <pixel@mandriva.com>
Date: Thu, 24 Mar 2005 14:02:03 +0000
Subject: - configure a firewall by default in secure level >= 3 - allow
 auto_install parameter {firewall_ports}

---
 perl-install/install_steps.pm | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

(limited to 'perl-install/install_steps.pm')

diff --git a/perl-install/install_steps.pm b/perl-install/install_steps.pm
index 8ccaa2ecd..7705794ee 100644
--- a/perl-install/install_steps.pm
+++ b/perl-install/install_steps.pm
@@ -658,6 +658,21 @@ sub configureNetwork {
 	$o->{netcnx}{type} = 'lan';
 	$o->{netcnx}{$_} = $o->{netc}{$_} foreach qw(NET_DEVICE NET_INTERFACE);
     }
+
+    configure_firewall($o) if !$o->{isUpgrade};
+}
+
+sub configure_firewall {
+    my ($o) = @_;
+
+    if (!exists $o->{firewall_ports} && $o->{security} >= 3) {
+	require network::drakfirewall;
+	$o->{firewall_ports} = network::drakfirewall::default_ports($o->do_pkgs);
+    }
+    if ($o->{firewall_ports}) {
+	require network::drakfirewall;
+	network::drakfirewall::set_ports($o->do_pkgs, 0, $o->{firewall_ports});
+    }
 }
 
 #------------------------------------------------------------------------------
-- 
cgit v1.2.1