firewall: fix chain selection logic, option dest must be ignored for notrack targets
SVN-Revision: 23143
This commit is contained in:
Jo-Philipp Wich
parent
a1a31f1831
commit
1a0d7a3612
1 changed files with 5 additions and 6 deletions
|
|
@ -36,16 +36,15 @@ fw_load_rule() {
|
||||||
|
|
||||||
local table=f
|
local table=f
|
||||||
local chain=input
|
local chain=input
|
||||||
if [ "$rule_target" == "NOTRACK" ]; then
|
local target="${rule_target:-REJECT}"
|
||||||
|
if [ "$target" == "NOTRACK" ]; then
|
||||||
table=r
|
table=r
|
||||||
chain="zone_${rule_src}_notrack"
|
chain="zone_${rule_src}_notrack"
|
||||||
elif [ -n "$rule_src" ]; then
|
else
|
||||||
chain="zone_${rule_src}${rule_dest:+_forward}"
|
[ -n "$rule_src" ] && chain="zone_${rule_src}${rule_dest:+_forward}"
|
||||||
|
[ -n "$rule_dest" ] && target="zone_${rule_dest}_${target}"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
local target="${rule_target:-REJECT}"
|
|
||||||
[ -n "$dest" ] && target="zone_${rule_dest}_${target}"
|
|
||||||
|
|
||||||
local mode
|
local mode
|
||||||
fw_get_family_mode mode ${rule_family:-x} $rule_src I
|
fw_get_family_mode mode ${rule_family:-x} $rule_src I
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue