diff options
| author | Stig Thormodsrud <stig@vyatta.com> | 2009-04-13 13:56:18 -0700 |
|---|---|---|
| committer | Stig Thormodsrud <stig@vyatta.com> | 2009-04-13 13:56:18 -0700 |
| commit | 5d2407391cbfc274aa819a9a62a688250ecaf627 (patch) | |
| tree | 20b8456b6201511b6d4f7030b04da222b9551b52 /scripts | |
| parent | 4b77669da9c2c16db3f5a3696335bab386f4cf11 (diff) | |
| download | vyatta-cfg-firewall-5d2407391cbfc274aa819a9a62a688250ecaf627.tar.gz vyatta-cfg-firewall-5d2407391cbfc274aa819a9a62a688250ecaf627.zip | |
Fix bug where an empty firewall rule deletes the default drop policy.
Diffstat (limited to 'scripts')
| -rwxr-xr-x | scripts/firewall/vyatta-firewall.pl | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/scripts/firewall/vyatta-firewall.pl b/scripts/firewall/vyatta-firewall.pl index ed29bc3..ae9129b 100755 --- a/scripts/firewall/vyatta-firewall.pl +++ b/scripts/firewall/vyatta-firewall.pl @@ -350,6 +350,7 @@ sub update_rules { # note that this clears the counters on the default DROP rule. # we could delete rule one by one if those are important. run_cmd("$iptables_cmd -t $table -F $name", 1, 1); + set_default_policy($table, $name, $iptables_cmd, $policy); next; } |