Use iptables comment to identify CLI rule numbers in iptables output

1 files changed, 1 insertions, 1 deletions

diff --git a/scripts/firewall/vyatta-firewall.pl b/scripts/firewall/vyatta-firewall.pl
index 058e9cf..2176b11 100755
--- a/scripts/firewall/vyatta-firewall.pl
+++ b/scripts/firewall/vyatta-firewall.pl
@@ -575,7 +575,7 @@ sub setup_iptables($) {
 sub add_default_drop_rule($$$) {
   my ($table, $chain, $iptables_cmd) = @_;
   # system("$iptables_cmd -t $table -A $chain -j DROP 2>&1 | $logger");
-  run_cmd("$iptables_cmd -t $table -A $chain -j DROP", 1, 1);
+  run_cmd("$iptables_cmd -t $table -A $chain -m comment --comment \"$chain-1025\" -j DROP", 1, 1);
 }
 
 sub setup_chain($$$) {