Package: ferm
Version: 2.0.6-1
Severity: wishlist
Hi,
I would like to write code like
foreach( @iface ) {
chain INPUT interface $_ saddr `ipofif $_` DROP;
}
Since ferm doesn't have a loop construct itself, it is currecntly
needed to have an external program whose output is then included in
the firewall rules with @include "foo|";
Example:
# hook code:
# foreach( split( /\s+/, `ifacedata --logname +`) ) {
# chomp(my $brdofif = `ifacedata --brd $_`);
# if( "$brdofif" ne "" ) {
# print $fh "chain ich interface $_ daddr $brdofif RETURN;\n";
# }
# }
@include "ferm-hook allow-all-broadcasts|";
It would be much nicer to be able to code the loop inside the ferm
rule itself.
Greetings
Marc
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
