[Shorewall-devel] [PATCH] Re: Shorewall 4.5.12 Beta 5

Sat, 12 Jan 2013 06:37:29 -0800 

On 01/11/2013 05:52 PM, Steven Jan Springl wrote:
> On Saturday 12 Jan 2013 01:39:18 Tom Eastep wrote:
>> On 1/11/13 5:20 PM, Steven Jan Springl wrote:
>>> The attached config. generates the following iptables rule:
>>>
>>> -A fw2lan -p 17 -m conntrack --ctstate ESTABLISHED-o eth0 -j ACCEPT
>>>
>>> Which produces the following error message:
>>>
>>> iptables-restore v1.4.17: Bad ctstate "ESTABLISHED-o"
>>>
>>> The following iptables rules are also generated:
>>>
>>> -A lan2fw -p 17 -m conntrack --ctstate ESTABLISHED-g ~log0 -m comment --
>>> comment "ALLOW"
>>>
>>> -A lan2fw -p 17 -m conntrack --ctstate ESTABLISHED-j Limit -m comment --
>>> comment "ALLOW"
>>

The attached patch corrects this issue and should be applied by all of
you who are testing Beta 5.

Thanks Steven,
-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________

diff --git a/Shorewall/Perl/Shorewall/Rules.pm b/Shorewall/Perl/Shorewall/Rules.pm
index 5ca5054..e8df138 100644
--- a/Shorewall/Perl/Shorewall/Rules.pm
+++ b/Shorewall/Perl/Shorewall/Rules.pm
@@ -2385,7 +2385,7 @@ sub process_rule1 ( $$$$$$$$$$$$$$$$$$ ) {
 	    }
 
 	fatal_error "$basictarget rules are not allowed in the $section SECTION" if $actiontype & ( NATRULE | NONAT );
-	$rule .= "$globals{STATEMATCH} ESTABLISHED" if $section == ESTABLISHED_SECTION;
+	$rule .= "$globals{STATEMATCH} ESTABLISHED " if $section == ESTABLISHED_SECTION;
     }
     #
     # Generate CT rules(s), if any

Attachment: signature.asc
Description: OpenPGP digital signature

------------------------------------------------------------------------------
Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS,
MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current
with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft
MVPs and experts. SALE $99.99 this month only -- learn more at:
http://p.sf.net/sfu/learnmore_122912
_______________________________________________
Shorewall-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-devel

Reply via email to