On 01/09/2013 02:09 AM, Mr Dash Four wrote: > Tom Eastep wrote: > >>> Passes without an error and closer inspection reveals that the AUDIT >>> ?IF/?ENDIF block has been completely ignored, which, I assume, is as a >>> result of shorewall taking into account the slash (\) in the comment line >>> above. >>> >> >> Yes -- Shorewall processes compiler directives before looking for >> comments. > Which doesn't make it right, does it, unless the notion of a "comment" > in shorewall is somewhat different from any other script languages - in > other words, that "a comment" in shorewall isn't really a comment and > its contents is not really "ignored", but still processed. If that is > so, you may want to highlight this so it is clear to everyone. >
Will do.
The reason for this behavior is so that if I have a continued rule such
as this:
ACCEPT net:1.2.3.4,\
4.5.7.8,\
9.10.11.12 fw tcp 123
it is possible to comment the rule out with a single '#' rather than 3.
#ACCEPT net:1.2.3.4,\
4.5.7.8,\
9.10.11.12 fw tcp 123
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Master Java SE, Java EE, Eclipse, Spring, Hibernate, JavaScript, jQuery and much more. Keep your Java skills current with LearnJavaNow - 200+ hours of step-by-step video tutorials by Java experts. SALE $49.99 this month only -- learn more at: http://p.sf.net/sfu/learnmore_122612
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
