From eb0da551b24841c54bc14ed9424368ff6cf7076a Mon Sep 17 00:00:00 2001
From: Florin Grad <florin@mandriva.com>
Date: Tue, 31 Aug 2004 05:12:23 +0000
Subject: use the loc zone in policy only if the loc interface exists

---
 perl-install/network/shorewall.pm | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

(limited to 'perl-install/network')

diff --git a/perl-install/network/shorewall.pm b/perl-install/network/shorewall.pm
index 1bd15fead..69fb51ce3 100644
--- a/perl-install/network/shorewall.pm
+++ b/perl-install/network/shorewall.pm
@@ -129,9 +129,8 @@ sub write {
 		    (map { [ 'loc', $_, 'detect' ] } @{$conf->{loc_interface} || []}),
 		   );
     set_config_file('policy',
-		    if_($conf->{loc_interface}[0], [ 'loc', 'net', 'ACCEPT' ]),
+		    if_($conf->{loc_interface}[0], [ 'loc', 'net', 'ACCEPT' ], [ 'fw', 'loc', 'ACCEPT' ]),
 		    [ 'fw', 'net', 'ACCEPT' ],
-		    [ 'fw', 'loc', 'ACCEPT' ],
 		    [ 'net', 'all', 'DROP', 'info' ],
 		    [ 'all', 'all', 'REJECT', 'info' ],
 		   );
-- 
cgit v1.2.1