]> git.ipfire.org Git - people/teissler/ipfire-2.x.git/commitdiff
projects / people / teissler / ipfire-2.x.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: bcbf1b8)
Forward Firewall: edited p2pblock call in rules.pl
authorAlexander Marx <amarx@ipfire.org>
Wed, 16 Jan 2013 05:12:34 +0000 (06:12 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Fri, 9 Aug 2013 12:08:11 +0000 (14:08 +0200)
config/forwardfw/rules.pl patch | blob | blame | history

diff --git a/config/forwardfw/rules.pl b/config/forwardfw/rules.pl
index 152558b643b0958c14ae9aecf3955ffd548a265d..a6ba4fc50798313cb98baec48bf6c49a838c704a 100755 (executable)
--- a/config/forwardfw/rules.pl
+++ b/config/forwardfw/rules.pl
@@ -89,10 +89,13 @@ if($param eq 'flush'){
        &preparerules;
        if($MODE eq '0'){
                if ($fwdfwsettings{'POLICY'} eq 'MODE1'){
+                       &p2pblock;
                        system ("/usr/sbin/firewall-forward-policy"); 
                }elsif($fwdfwsettings{'POLICY'} eq 'MODE2'){
+                       &p2pblock;
                        system ("/usr/sbin/firewall-forward-policy"); 
-               }elsif($fwdfwsettings{'POLICY'} eq 'MODE0' || $fwdfwsettings{'POLICY'} eq 'MODE2'){
+                       system ("iptables -A $CHAIN -m state --state NEW -j ACCEPT");
+               }elsif($fwdfwsettings{'POLICY'} eq 'MODE0'){
                        system ("/usr/sbin/firewall-forward-policy"); 
                        system ("iptables -A $CHAIN -m state --state NEW -j ACCEPT");
                }
@@ -107,7 +110,6 @@ sub preparerules
 {
        if (! -z  "${General::swroot}/forward/config"){
                &buildrules(\%configfwdfw);
-               &p2pblock;
        }
        if (! -z  "${General::swroot}/forward/input"){
                &buildrules(\%configinputfw);
Timo's tree of IPFire 2.x