summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorFlorin Grad <florin@mandriva.com>2004-08-31 05:12:23 +0000
committerFlorin Grad <florin@mandriva.com>2004-08-31 05:12:23 +0000
commiteb0da551b24841c54bc14ed9424368ff6cf7076a (patch)
treef2c0b1b57ff3c452d2abf361266a3a504e3c65ee
parentf371ce2f0aa829db804e3c2a5b3557c5989076ec (diff)
downloaddrakx-eb0da551b24841c54bc14ed9424368ff6cf7076a.tar
drakx-eb0da551b24841c54bc14ed9424368ff6cf7076a.tar.gz
drakx-eb0da551b24841c54bc14ed9424368ff6cf7076a.tar.bz2
drakx-eb0da551b24841c54bc14ed9424368ff6cf7076a.tar.xz
drakx-eb0da551b24841c54bc14ed9424368ff6cf7076a.zip
use the loc zone in policy only if the loc interface exists
-rw-r--r--perl-install/network/shorewall.pm3
1 files changed, 1 insertions, 2 deletions
diff --git a/perl-install/network/shorewall.pm b/perl-install/network/shorewall.pm
index 1bd15fead..69fb51ce3 100644
--- a/perl-install/network/shorewall.pm
+++ b/perl-install/network/shorewall.pm
@@ -129,9 +129,8 @@ sub write {
(map { [ 'loc', $_, 'detect' ] } @{$conf->{loc_interface} || []}),
);
set_config_file('policy',
- if_($conf->{loc_interface}[0], [ 'loc', 'net', 'ACCEPT' ]),
+ if_($conf->{loc_interface}[0], [ 'loc', 'net', 'ACCEPT' ], [ 'fw', 'loc', 'ACCEPT' ]),
[ 'fw', 'net', 'ACCEPT' ],
- [ 'fw', 'loc', 'ACCEPT' ],
[ 'net', 'all', 'DROP', 'info' ],
[ 'all', 'all', 'REJECT', 'info' ],
);