Tom
The tcp/udp port 0 bug is back.
Rule:
ACCEPT lan:192.168.0.3 $FW udp 0 0
produces:
-A lan2fw -p udp -s 192.168.0.3 -j ACCEPT
A patch is attached.
Steven.
--- /root/shorewall/Chains.pm 2007-04-21 10:22:27.000000000 +0100
+++ Chains.pm 2007-04-21 10:36:02.000000000 +0100
@@ -658,7 +658,7 @@
$output = "-p $proto ";
}
- if ( $ports ) {
+ if ( $ports ne '' ) {
if ( $ports =~ tr/,/,/ > 0 ) {
fatal_error "Port list requires Multiport support in your kernel/iptables: $ports" unless $capabilities{MULTIPORT};
fatal_error "Too many entries in port list: $ports" if port_count( $ports ) > 15;
@@ -668,7 +668,7 @@
}
}
- if ( $sports ) {
+ if ( $sports ne '' ) {
if ( $sports =~ tr/,/,/ > 0 ) {
fatal_error "Port list requires Multiport support in your kernel/iptables: $sports" unless $capabilities{MULTIPORT};
fatal_error "Too many entries in port list: $sports" if port_count( $sports ) > 15;
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
