diff options
| author | Nicolas Fort <nicolasfort1988@gmail.com> | 2023-11-06 14:58:19 +0000 |
|---|---|---|
| committer | Nicolas Fort <nicolasfort1988@gmail.com> | 2023-11-06 14:58:19 +0000 |
| commit | 42f5ae2e7e729e78157c24893b984ef30bd0498d (patch) | |
| tree | 10e14a0dd798b7503c68e680de1e6478ef58df44 /data/templates/firewall | |
| parent | fd9e2c24e739fd327f860c45fa00241fd1acca7e (diff) | |
| download | vyos-1x-42f5ae2e7e729e78157c24893b984ef30bd0498d.tar.gz vyos-1x-42f5ae2e7e729e78157c24893b984ef30bd0498d.zip | |
T5541: firewall: fix ZBF template and ruleset generation for loca-zone rules.
Diffstat (limited to 'data/templates/firewall')
| -rw-r--r-- | data/templates/firewall/nftables-zone.j2 | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/data/templates/firewall/nftables-zone.j2 b/data/templates/firewall/nftables-zone.j2 index 124304e77..ee468c6c1 100644 --- a/data/templates/firewall/nftables-zone.j2 +++ b/data/templates/firewall/nftables-zone.j2 @@ -39,8 +39,8 @@ } chain VZONE_{{ zone_name }}_OUT { oifname lo counter return -{% if zone_conf.from is vyos_defined %} -{% for from_zone, from_conf in zone_conf.from.items() if from_conf.firewall[fw_name] is vyos_defined %} +{% if zone_conf.from_local is vyos_defined %} +{% for from_zone, from_conf in zone_conf.from_local.items() if from_conf.firewall[fw_name] is vyos_defined %} oifname { {{ zone[from_zone].interface | join(",") }} } counter jump NAME{{ suffix }}_{{ from_conf.firewall[fw_name] }} oifname { {{ zone[from_zone].interface | join(",") }} } counter return {% endfor %} |