X-Git-Url: http://git.ipfire.org/?p=people%2Fpmueller%2Fipfire-2.x.git;a=blobdiff_plain;f=config%2Ffirewall%2Fipsec-policy;h=334e2d9bbdd9f0b383ad0a960c579985c4d79ad1;hp=1ad4de65013fe66c8d3e36fb62c370256b865289;hb=053a582d3a68456f861d4e7ab3529163ee84ec47;hpb=c5d855492ed16a8f832eea617fc713f7742989a0

diff --git a/config/firewall/ipsec-policy b/config/firewall/ipsec-policy
index 1ad4de6501..334e2d9bbd 100644
--- a/config/firewall/ipsec-policy
+++ b/config/firewall/ipsec-policy
@@ -34,6 +34,11 @@ block_subnet() {
 	local subnet="${1}"
 	local action="${2}"
 
+	# Nothing to be done if no action is requested
+	if [ "${action}" = "none" ]; then
+		return 0
+	fi
+
 	# Don't block a wildcard subnet
 	if [ "${subnet}" = "0.0.0.0/0" ] || [ "${subnet}" = "0.0.0.0/0.0.0.0" ]; then
 		return 0
@@ -108,7 +113,7 @@ install_policy() {
 
 		case "${route}" in
 			route)
-				action="drop"
+				action="none"
 				;;
 			*)
 				action="reject"