Andrew Suffield wrote: > On Sat, Nov 18, 2006 at 08:39:31AM -0800, Tom Eastep wrote: >> If you want that behavior, then you will have to copy the contents of the >> ipsets >> file into your init script as in: >> >> ipset -R << _EOF_ >> <contents of ipsets> >> _EOF_ > > Ah, I'll do that. Still, shorewall should probably throw an error > rather than generate a firewall script that can't possibly work.
Please try the attached patch -- it moved processing of ipsets to the firewall system. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
Index: compiler
===================================================================
--- compiler (revision 4904)
+++ compiler (working copy)
@@ -6659,17 +6659,20 @@
setcontinue OUTPUT
fi
- f=$(find_file ipsets)
+ indent >&3 << __EOF__
- if [ -f $f ]; then
- progress_message2 "Processing $f ..."
- save_progress_message "Restoring IPSETS..."
- save_command "ipset -U :all: :all:"
- save_command "ipset -F"
- save_command "ipset -X"
- save_command "ipset -R < $f"
- fi
+f=\$(find_file ipsets)
+if [ -f \$f ]; then
+ progress_message2 "Processing \$f ..."
+ save_progress_message "Restoring IPSETS..."
+ save_command "ipset -U :all: :all:"
+ save_command "ipset -F"
+ save_command "ipset -X"
+ save_command "ipset -R < \$f"
+fi
+__EOF__
+
append_file continue
f=$(find_file routestopped)
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
