diff options
author | Nicolas Fort <nicolasfort1988@gmail.com> | 2023-11-28 12:36:53 +0000 |
---|---|---|
committer | Nicolas Fort <nicolasfort1988@gmail.com> | 2023-11-28 12:36:53 +0000 |
commit | 4ded8814f036b921a04a54850ca6717aafe91a52 (patch) | |
tree | 8f88ea6a922f5dfba5b6c078cdf643495a467c6c /src/migration-scripts/firewall/10-to-11 | |
parent | 64ee13cf9374d6e726570a8d0083c2e7a386a873 (diff) | |
download | vyos-1x-4ded8814f036b921a04a54850ca6717aafe91a52.tar.gz vyos-1x-4ded8814f036b921a04a54850ca6717aafe91a52.zip |
T5575: Update migration scripts for state policy parsing
Diffstat (limited to 'src/migration-scripts/firewall/10-to-11')
-rwxr-xr-x | src/migration-scripts/firewall/10-to-11 | 18 |
1 files changed, 5 insertions, 13 deletions
diff --git a/src/migration-scripts/firewall/10-to-11 b/src/migration-scripts/firewall/10-to-11 index b739fb139..e14ea0e51 100755 --- a/src/migration-scripts/firewall/10-to-11 +++ b/src/migration-scripts/firewall/10-to-11 @@ -63,19 +63,11 @@ if not config.exists(base): ### Migration of state policies if config.exists(base + ['state-policy']): - for family in ['ipv4', 'ipv6']: - for hook in ['forward', 'input', 'output']: - for priority in ['filter']: - # Add default-action== accept for compatibility reasons: - config.set(base + [family, hook, priority, 'default-action'], value='accept') - position = 1 - for state in config.list_nodes(base + ['state-policy']): - action = config.return_value(base + ['state-policy', state, 'action']) - config.set(base + [family, hook, priority, 'rule']) - config.set_tag(base + [family, hook, priority, 'rule']) - config.set(base + [family, hook, priority, 'rule', position, 'state', state], value='enable') - config.set(base + [family, hook, priority, 'rule', position, 'action'], value=action) - position = position + 1 + for state in config.list_nodes(base + ['state-policy']): + action = config.return_value(base + ['state-policy', state, 'action']) + config.set(base + ['global-options', 'state-policy', state, 'action'], value=action) + if config.exists(base + ['state-policy', state, 'log']): + config.set(base + ['global-options', 'state-policy', state, 'log'], value='enable') config.delete(base + ['state-policy']) ## migration of global options: |