From cb97581251df019d2dba1ae830cc0d46b2631c6c Mon Sep 17 00:00:00 2001 From: DmitriyEshenko Date: Fri, 18 Oct 2019 00:10:06 +0000 Subject: T1742 adding additional check before iptables rules creation (cherry picked from commit 9d984b1ffe12f87bd7144e8f5ee199909bbf6a2a) --- scripts/vyos-update-nhrp.pl | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/scripts/vyos-update-nhrp.pl b/scripts/vyos-update-nhrp.pl index c6338fd..35c423c 100644 --- a/scripts/vyos-update-nhrp.pl +++ b/scripts/vyos-update-nhrp.pl @@ -458,6 +458,10 @@ sub create_nhrp_iptables { $config_tun->setLevel("interfaces tunnel"); if ( $config_tun->exists("$tun local-ip")) { + if ( $config_tun->exists("$tun remote-ip")) { + print ("$tun is not 'mGRE' tunnel'\n"); + exit 1; + } my $local_ip = $config_tun->returnValue("$tun local-ip"); system ("sudo iptables -N VYOS_NHRP_${tun}_OUT_HOOK") == 0 or die "System call failed: $!"; -- cgit v1.2.3