domenico/openwrt_NSS_ACW
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

uci firewall - remove implicit creation of zones, based on network interfaces

Browse Source 
SVN-Revision: 12281
This commit is contained in:
John Crispin
2008-08-11 20:46:17 +00:00
parent 5745e536d4
commit 0f5cbca010
2 changed files with 1 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
package/firewall/files/new/20-firewall
View File

@@ -20,9 +20,7 @@ load_zones() {
config_foreach load_zones zone config_foreach load_zones zone
IFACE=$(find_config $INTERFACE) [ -z "$ZONE" ] && exit 0
[ -n "$IFACE" ] &&
list_contains ZONE $IFACE || ZONE="$ZONE $IFACE"
[ ifup = "$ACTION" ] && { [ ifup = "$ACTION" ] && {
for z in $ZONE; do for z in $ZONE; do

6
package/firewall/files/new/uci_firewall.sh
View File

@@ -91,10 +91,6 @@ load_synflood() {
$IPTABLES -A INPUT -p tcp --syn -j SYN_FLOOD $IPTABLES -A INPUT -p tcp --syn -j SYN_FLOOD
} }
create_network_zone() {
create_zone "$1" "$1"
}
fw_defaults() { fw_defaults() {
load_policy $1 load_policy $1
DEF_INPUT=$input DEF_INPUT=$input
@@ -261,8 +257,6 @@ fw_init() {
config_foreach fw_defaults defaults config_foreach fw_defaults defaults
echo "Loading zones" echo "Loading zones"
config_foreach fw_zone zone config_foreach fw_zone zone
echo "Loading interfaces"
config_foreach create_network_zone interface
echo "Loading rules" echo "Loading rules"
config_foreach fw_rule rule config_foreach fw_rule rule
echo "Loading forwarding" echo "Loading forwarding"