On 02/10/2013 08:35 AM, Steven Jan Springl wrote: > > I have recreated the problem in the attached config: >
Thank you Steven. Patch attached. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
diff --git a/Shorewall/Perl/Shorewall/Rules.pm b/Shorewall/Perl/Shorewall/Rules.pm
index abc5e68..682d9b0 100644
--- a/Shorewall/Perl/Shorewall/Rules.pm
+++ b/Shorewall/Perl/Shorewall/Rules.pm
@@ -672,7 +672,9 @@ sub policy_rules( $$$$$ ) {
if ( $default && $default ne 'none' ) {
my ( $action ) = split ':', $default;
- if ( ( $targets{$action} || 0 ) == INLINE ) {
+ my ( $basicaction, $param ) = get_target_param $action;
+
+ if ( ( $targets{$basicaction} || 0 ) == INLINE ) {
#
# Default action is an inline
#
@@ -1762,9 +1764,8 @@ sub process_action($$) {
#
sub use_policy_action( $$ ) {
my $ref = use_action( $_[0] );
-
if ( $ref ) {
- process_action( $ref, $_[1] );
+ delete $usedactions{$ref->{action}} if process_action( $ref, $_[1] );
} else {
$ref = $usedactions{$_[0]};
}
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Free Next-Gen Firewall Hardware Offer Buy your Sophos next-gen firewall before the end March 2013 and get the hardware for free! Learn more. http://p.sf.net/sfu/sophos-d2d-feb
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
