diff options
author | Jo-Philipp Wich <jow@openwrt.org> | 2010-09-28 10:42:56 +0000 |
---|---|---|
committer | Jo-Philipp Wich <jow@openwrt.org> | 2010-09-28 10:42:56 +0000 |
commit | 6a335579b8e63886c2beed4aee72ab2f335a7d2e (patch) | |
tree | 01abaef74996070e6b60c987b51d9a12da73dbff /package/firewall/files/lib/core_init.sh | |
parent | 2fdc8aea047bcc7ca142e2fc960263647e79eda1 (diff) | |
download | mtk-20170518-6a335579b8e63886c2beed4aee72ab2f335a7d2e.zip mtk-20170518-6a335579b8e63886c2beed4aee72ab2f335a7d2e.tar.gz mtk-20170518-6a335579b8e63886c2beed4aee72ab2f335a7d2e.tar.bz2 |
fireall: - support negations for src_ip, dest_ip, src_dip options in rules and redirects - add NOTRACK target to rule sections, allows to define fine grained notrack rules
SVN-Revision: 23141
Diffstat (limited to 'package/firewall/files/lib/core_init.sh')
-rw-r--r-- | package/firewall/files/lib/core_init.sh | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/package/firewall/files/lib/core_init.sh b/package/firewall/files/lib/core_init.sh index 56e19b7..c7e41e7 100644 --- a/package/firewall/files/lib/core_init.sh +++ b/package/firewall/files/lib/core_init.sh @@ -245,9 +245,9 @@ fw_load_zone() { if [ "$zone_masq" == 1 ]; then local msrc mdst for msrc in ${zone_masq_src:-0.0.0.0/0}; do - [ "${msrc#!}" != "$msrc" ] && msrc="! -s ${msrc#!}" || msrc="-s $msrc" + fw_get_negation msrc '-s' "$msrc" for mdst in ${zone_masq_dest:-0.0.0.0/0}; do - [ "${mdst#!}" != "$mdst" ] && mdst="! -d ${mdst#!}" || mdst="-d $mdst" + fw_get_negation mdst '-d' "$mdst" fw add $mode n ${chain}_nat MASQUERADE $ { $msrc $mdst } done done |