[
https://issues.apache.org/jira/browse/VCL-1031?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16005341#comment-16005341
]
ASF subversion and git services commented on VCL-1031:
------------------------------------------------------
Commit 1794757 from [email protected] in branch 'vcl/trunk'
[ https://svn.apache.org/r1794757 ]
VCL-1031
Fixed iptables.pm::get_table_info to work with older versions of iptables such
as with CentOS 5 which don't support the --list-rules (-S) argument. If the
iptables command fails for this reason, an attempt is made to call
iptables-save. If successful, its output is parsed to match the format of
iptables --list-rules.
Updated iptables.pm::_insert_rule to use full iptables argument names for
consistency.
> Update iptables.pm to be used for all iptables configuration
> ------------------------------------------------------------
>
> Key: VCL-1031
> URL: https://issues.apache.org/jira/browse/VCL-1031
> Project: VCL
> Issue Type: Improvement
> Components: vcld (backend)
> Reporter: Andy Kurth
> Assignee: Andy Kurth
> Fix For: 2.5
>
>
> The iptables.pm module was created when the NAT functionality was added. Up
> to this point, it is only being used to configure the firewall on the NAT
> host. The Linux OS modules are still used to configure iptables. With the
> addition of firewalld (VCL-972) and ufw (VCL-971), all of the Linux firewall
> code should be pulled out of the main OS module and into the dedicated file.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
