From 6a335579b8e63886c2beed4aee72ab2f335a7d2e Mon Sep 17 00:00:00 2001
From: Jo-Philipp Wich <jow@openwrt.org>
Date: Tue, 28 Sep 2010 10:42:56 +0000
Subject: fireall: - support negations for src_ip, dest_ip, src_dip options in
 rules and redirects - add NOTRACK target to rule sections, allows to define
 fine grained notrack rules

SVN-Revision: 23141
---
 package/firewall/files/lib/fw.sh | 9 +++++++++
 1 file changed, 9 insertions(+)

(limited to 'package/firewall/files/lib/fw.sh')

diff --git a/package/firewall/files/lib/fw.sh b/package/firewall/files/lib/fw.sh
index 3549f8a..16a39b6 100644
--- a/package/firewall/files/lib/fw.sh
+++ b/package/firewall/files/lib/fw.sh
@@ -218,3 +218,12 @@ fw_get_family_mode() {
 	esac
 }
 
+fw_get_negation() {
+	local _var="$1"
+	local _flag="$2"
+	local _ipaddr="$3"
+
+	[ "${_ipaddr#!}" != "$_ipaddr" ] && \
+		export -n -- "$_var=! $_flag ${_ipaddr#!}" || \
+		export -n -- "$_var=${_ipaddr:+$_flag $_ipaddr}"
+}
-- 
cgit v1.1