diff options
author | Nicolas Fort <nicolasfort1988@gmail.com> | 2023-11-13 18:36:04 +0000 |
---|---|---|
committer | Nicolas Fort <nicolasfort1988@gmail.com> | 2023-11-14 11:23:40 +0000 |
commit | 9e053268355f16b9aba6a551febc1e8902cf20c9 (patch) | |
tree | 0147d681b5242e0fe6ffe8aff0d2822593bb2535 /src/conf_mode/firewall.py | |
parent | 9f92b9ff69477fa93a87f49666a1f7b79949d585 (diff) | |
download | vyos-1x-9e053268355f16b9aba6a551febc1e8902cf20c9.tar.gz vyos-1x-9e053268355f16b9aba6a551febc1e8902cf20c9.zip |
T5729: T5590: T5616: backport to sagita fwall marks, fix on firewall logs parsing, and migration to valueless node for log and state matchers
Diffstat (limited to 'src/conf_mode/firewall.py')
-rwxr-xr-x | src/conf_mode/firewall.py | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/conf_mode/firewall.py b/src/conf_mode/firewall.py index da22fad68..c4974d249 100755 --- a/src/conf_mode/firewall.py +++ b/src/conf_mode/firewall.py @@ -249,7 +249,7 @@ def verify_rule(firewall, rule_conf, ipv6): raise ConfigError(f'{side} port-group and port cannot both be defined') if 'log_options' in rule_conf: - if 'log' not in rule_conf or 'enable' not in rule_conf['log']: + if 'log' not in rule_conf: raise ConfigError('log-options defined, but log is not enable') if 'snapshot_length' in rule_conf['log_options'] and 'group' not in rule_conf['log_options']: |