Steven Jan Springl wrote: > Tom > > Rule: > > ACCEPT lan:192.168.0.9 $FW all > > when compiled with shorewall-perl produces message: > > ERROR: Invalid/Unknown protocol (all) > > This worked with shorewall 4.0.4
Thanks, Steven The attached patch should solve the problem. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
Index: Shorewall/Chains.pm
===================================================================
--- Shorewall/Chains.pm (revision 7457)
+++ Shorewall/Chains.pm (working copy)
@@ -989,6 +989,8 @@
$proto = $p eq 'udp' ? '-p 17 ' : $p eq 'tcp' ? '-p 6 ' : '';
$ports = 'ipp2p' unless $ports;
$output .= "${proto}-m ipp2p --$ports ";
+ } elsif ( lc $proto eq 'all' ) {
+ fatal_error "SOURCE/DEST PORT(S) not allowed with PROTO all" if $ports ne '' || $sports ne '';
} else {
#
# Handle the Regular cases (protocol name must be in /etc/protocols or NSS equivalent) here
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
