On Mon, 28 Dec 2009 07:40:43 -0800 Tom Eastep <[email protected]> wrote:
> On Mon, 28 Dec 2009 07:26:41 -0800 > Tom Eastep <[email protected]> wrote: > > > please do this instead: > > > > a) shorewall show -f capabilities > /etc/shorewall/caps > > b) tar -cf /etc/shorewall shorewall.tgz > > Should be 'tar -cf shorewall.tgz /etc/shorewall' > > > c) Send shorewall.tgz as an email attachment to me personally > > The attached patch *may* correct the problem: patch /usr/share/shorewall/Shorewall/Rules.pm < fwdchain.patch If that doesn't work, then please forward the tarball I requested. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
--- /home/teastep/shorewall/build/4.4/shorewall-4.4.5.4/Perl/Shorewall/Rules.pm 2009-12-24 10:26:27.000000000 -0800
+++ /usr/share/shorewall/Shorewall/Rules.pm 2009-12-28 07:36:42.000000000 -0800
@@ -1710,7 +1710,7 @@
my $sourcechainref;
my $interfacematch = '';
- if ( use_forward_chain( $interface ) ) {
+ if ( use_forward_chain( $interface ) || $forward_jump_added{$interface} ) {
$sourcechainref = $filter_table->{forward_chain $interface};
add_jump $filter_table->{FORWARD} , $sourcechainref, 0 , match_source_dev( $interface ) unless $forward_jump_added{$interface}++;
} else {
@@ -1822,7 +1822,7 @@
my $outputref;
my $interfacematch = '';
- if ( use_output_chain $interface ) {
+ if ( use_output_chain( $interface ) || $output_jump_added{$interface} ) {
$outputref = $filter_table->{output_chain $interface};
add_jump $filter_table->{OUTPUT}, $outputref, 0, match_dest_dev( $interface ) unless $output_jump_added{$interface}++;
} else {
@@ -1871,7 +1871,7 @@
my $inputchainref;
my $interfacematch = '';
- if ( use_input_chain $interface ) {
+ if ( use_input_chain( $interface ) || $input_jump_added{$interface} ) {
$inputchainref = $filter_table->{input_chain $interface};
add_jump $filter_table->{INPUT}, $inputchainref, 0, match_source_dev($interface) unless $input_jump_added{$interface}++;
} else {
signature.asc
Description: PGP signature
------------------------------------------------------------------------------ This SF.Net email is sponsored by the Verizon Developer Community Take advantage of Verizon's best-in-class app development support A streamlined, 14 day to market process makes app distribution fast and easy Join now and get one step closer to millions of Verizon customers http://p.sf.net/sfu/verizon-dev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
