summaryrefslogtreecommitdiff
path: root/lib/Vyatta/IpTables
diff options
context:
space:
mode:
authorMohit Mehta <mohit.mehta@vyatta.com>2009-12-22 20:52:58 -0800
committerMohit Mehta <mohit.mehta@vyatta.com>2009-12-22 20:52:58 -0800
commit2a60e8e4d1f179ec41d02013b174aa63f2bba59b (patch)
tree759e6b3012d5240415eca5ab66185b3b9a04ee43 /lib/Vyatta/IpTables
parente8e6703303cdcbd98fedc184d5808f63ed3eb8f9 (diff)
downloadvyatta-cfg-firewall-2a60e8e4d1f179ec41d02013b174aa63f2bba59b.tar.gz
vyatta-cfg-firewall-2a60e8e4d1f179ec41d02013b174aa63f2bba59b.zip
Fix Bug 5173 Firewall becomes out of sync with iptables when logging is used
with action inspect in a rule - increment num of rules with inspect + log
Diffstat (limited to 'lib/Vyatta/IpTables')
-rw-r--r--lib/Vyatta/IpTables/Rule.pm1
1 files changed, 1 insertions, 0 deletions
diff --git a/lib/Vyatta/IpTables/Rule.pm b/lib/Vyatta/IpTables/Rule.pm
index 5fec1b3..6105ae7 100644
--- a/lib/Vyatta/IpTables/Rule.pm
+++ b/lib/Vyatta/IpTables/Rule.pm
@@ -309,6 +309,7 @@ sub get_num_ipt_rules {
if (("$self->{_log}" eq "enable") && (("$self->{_action}" eq "drop")
|| ("$self->{_action}" eq "accept")
|| ("$self->{_action}" eq "reject")
+ || ("$self->{_action}" eq "inspect")
|| ("$self->{_action}" eq "modify"))) {
$ipt_rules += 1;
$ipt_rules++ if $protocol_tcpudp == 1;