qi-hardware/openwrt-xburst
1
0
Fork 0
mirror of git://projects.qi-hardware.com/openwrt-xburst.git synced 2024-11-20 00:09:43 +02:00
Code

uci firewall

Browse Source 
- remove implicit creation of zones, based on network interfaces


git-svn-id: svn://svn.openwrt.org/openwrt/trunk@12281 3c298f89-4303-0410-b956-a3cf2f4a3e73
This commit is contained in:
blogic 2008-08-11 20:46:17 +00:00
parent 671fedb27c
commit 4905eac3af
2 changed files with 1 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
package/firewall/files/new/20-firewall
View File

@ -20,9 +20,7 @@ load_zones() {
config_foreach load_zones zone config_foreach load_zones zone
IFACE=$(find_config $INTERFACE) [ -z "$ZONE" ] && exit 0
[ -n "$IFACE" ] &&
list_contains ZONE $IFACE || ZONE="$ZONE $IFACE"
[ ifup = "$ACTION" ] && { [ ifup = "$ACTION" ] && {
for z in $ZONE; do for z in $ZONE; do

6
package/firewall/files/new/uci_firewall.sh
View File

@ -91,10 +91,6 @@ load_synflood() {
$IPTABLES -A INPUT -p tcp --syn -j SYN_FLOOD $IPTABLES -A INPUT -p tcp --syn -j SYN_FLOOD
} }
create_network_zone() {
create_zone "$1" "$1"
}
fw_defaults() { fw_defaults() {
load_policy $1 load_policy $1
DEF_INPUT=$input DEF_INPUT=$input
@ -261,8 +257,6 @@ fw_init() {
config_foreach fw_defaults defaults config_foreach fw_defaults defaults
echo "Loading zones" echo "Loading zones"
config_foreach fw_zone zone config_foreach fw_zone zone
echo "Loading interfaces"
config_foreach create_network_zone interface
echo "Loading rules" echo "Loading rules"
config_foreach fw_rule rule config_foreach fw_rule rule
echo "Loading forwarding" echo "Loading forwarding"