man: Convert network-zone(8) to asciidoc

[people/ms/network.git] / src / functions / functions.firewall

diff --git a/src/functions/functions.firewall b/src/functions/functions.firewall
index c484c2ac1159430220a8c4d0fa705f5f063c09e5..e22576b0332964e0308cda25e9eb11aac97e95c6 100644 (file)
--- a/src/functions/functions.firewall
+++ b/src/functions/functions.firewall
@@ -120,6 +120,7 @@ firewall_kernel_init() {
        if enabled FIREWALL_USE_ECN; then
                log INFO "Enabling ECN (Explicit Congestion Notification)"
                sysctl_set "net.ipv4.tcp_ecn" 1
+               sysctl_set "net.ipv4.tcp_ecn_fallback" 1
        else
                log INFO "Disabling ECN (Explicit Congestion Notification)"
                sysctl_set "net.ipv4.tcp_ecn" 2
@@ -268,7 +269,8 @@ firewall_panic() {
 }
 
 firewall_lock_acquire() {
-       lock_acquire ${RUN_DIR}/.firewall_lock
+       # XXX DEPRECATED
+       #lock_acquire ${RUN_DIR}/.firewall_lock
 
        # Make sure the lock is released after the firewall
        # script has crashed or exited early.
@@ -735,14 +737,14 @@ _firewall_parse_rule_line() {
        while read -r arg; do
                key=$(cli_get_key ${arg})
 
-               if ! listmatch "${key}" ${FIREWALL_RULES_CONFIG_PARAMS}; then
+               if ! list_match "${key}" ${FIREWALL_RULES_CONFIG_PARAMS}; then
                        log WARNING "Unrecognized argument: ${arg}"
                        return ${EXIT_ERROR}
                fi
 
-               val=$(cli_get_val ${arg})
+               val=$(cli_get_val "${arg}")
                assign "${key}" "${val}"
-       done <<< "$(args $@)"
+       done <<< "$(args "$@")"
 
        # action must always be set.
        if ! isset action; then