From f8fa598bf461ccdbd0fc6ddb5a61561b9197fed9 Mon Sep 17 00:00:00 2001
From: Jo-Philipp Wich <jow@openwrt.org>
Date: Thu, 15 Jul 2010 22:01:48 +0000
Subject: firewall: - notrack support was broken in multiple ways, fix it -
 also consider a zone conntracked if any redirect references it (#7196)

SVN-Revision: 22215
---
 package/firewall/files/lib/core_init.sh | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

(limited to 'package/firewall/files/lib/core_init.sh')

diff --git a/package/firewall/files/lib/core_init.sh b/package/firewall/files/lib/core_init.sh
index 92d1171..a55ace1 100644
--- a/package/firewall/files/lib/core_init.sh
+++ b/package/firewall/files/lib/core_init.sh
@@ -228,13 +228,12 @@ fw_load_zone() {
 }
 
 fw_load_notrack_zone() {
-	list_contains FW_CONNTRACK_ZONES "$1" && return
-
 	fw_config_get_zone "$1"
+	list_contains FW_CONNTRACK_ZONES "${zone_name}" && return
 
 	fw_callback pre notrack
 
-	fw add i f zone_${zone_name}_notrack NOTRACK $
+	fw add i r zone_${zone_name}_notrack NOTRACK $
 
 	fw_callback post notrack
 }
-- 
cgit v1.1