diff options
author | Mohit Mehta <mohit.mehta@vyatta.com> | 2009-12-22 20:52:58 -0800 |
---|---|---|
committer | Mohit Mehta <mohit.mehta@vyatta.com> | 2009-12-22 20:52:58 -0800 |
commit | 2a60e8e4d1f179ec41d02013b174aa63f2bba59b (patch) | |
tree | 759e6b3012d5240415eca5ab66185b3b9a04ee43 /lib/Vyatta/IpTables | |
parent | e8e6703303cdcbd98fedc184d5808f63ed3eb8f9 (diff) | |
download | vyatta-cfg-firewall-2a60e8e4d1f179ec41d02013b174aa63f2bba59b.tar.gz vyatta-cfg-firewall-2a60e8e4d1f179ec41d02013b174aa63f2bba59b.zip |
Fix Bug 5173 Firewall becomes out of sync with iptables when logging is used
with action inspect in a rule - increment num of rules with inspect + log
Diffstat (limited to 'lib/Vyatta/IpTables')
-rw-r--r-- | lib/Vyatta/IpTables/Rule.pm | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/lib/Vyatta/IpTables/Rule.pm b/lib/Vyatta/IpTables/Rule.pm index 5fec1b3..6105ae7 100644 --- a/lib/Vyatta/IpTables/Rule.pm +++ b/lib/Vyatta/IpTables/Rule.pm @@ -309,6 +309,7 @@ sub get_num_ipt_rules { if (("$self->{_log}" eq "enable") && (("$self->{_action}" eq "drop") || ("$self->{_action}" eq "accept") || ("$self->{_action}" eq "reject") + || ("$self->{_action}" eq "inspect") || ("$self->{_action}" eq "modify"))) { $ipt_rules += 1; $ipt_rules++ if $protocol_tcpudp == 1; |