Steven Jan Springl wrote: > On Friday 07 December 2007 00:26, Tom Eastep wrote: >> Shorewall 4.1.2 is now available for testing. > > Tom > > Rule: > ACCEPT:NFLOG(1,2,3) lan brd tcp 22 > > when compile with shorewall-perl generates the following iptables rule: > > A lan2brd -p 6 --dport 22 -j NFLOG --NFLOG-GROUP 1 --NFLOG-RANGE > 2 --NFLOG-THRESHOLD 3 --nflog-prefix "Shorewall:lan2brd:ACCEPT:" >
Drat -- I knew I should have retested after that last "can't fail" one-line change.... Patch attached... -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
Index: Shorewall/Config.pm
===================================================================
--- Shorewall/Config.pm (revision 7836)
+++ Shorewall/Config.pm (working copy)
@@ -1309,7 +1309,8 @@
}
sub validate_level( $ ) {
- my $level = uc $_[0];
+ my $rawlevel = $_[0];
+ my $level = uc $rawlevel;
if ( defined $level && $level ne '' ) {
$level =~ s/!$//;
@@ -1338,10 +1339,10 @@
}
if ( $level =~ /^NFLOG --/ or $level =~ /^ULOG --/ ) {
- return $level;
+ return $rawlevel;
}
- level_error( $level );
+ level_error( $rawlevel );
}
'';
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- SF.Net email is sponsored by: Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
