projects
/
project
/
firewall4.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
fw4: fix emitting device jump rules for family restricted zones
[project/firewall4.git]
/
root
/
usr
/
share
/
ucode
/
fw4.uc
diff --git
a/root/usr/share/ucode/fw4.uc
b/root/usr/share/ucode/fw4.uc
index 05e86469979db4fd6f0aaaf9f96af985c5298b33..f7a88a6469936a354851ceec10e1812528949513 100644
(file)
--- a/
root/usr/share/ucode/fw4.uc
+++ b/
root/usr/share/ucode/fw4.uc
@@
-2023,11
+2023,11
@@
return {
// we need to emit one or two AF specific rules
else {
// we need to emit one or two AF specific rules
else {
- if (
family_is_ipv4(zone) && length(match_subnets[0])
)
+ if (
!family || family == 4
)
for (let subnets in subnets_group_by_masking(match_subnets[0]))
add_rule(4, devgroup, subnets, zone);
for (let subnets in subnets_group_by_masking(match_subnets[0]))
add_rule(4, devgroup, subnets, zone);
- if (
family_is_ipv6(zone) && length(match_subnets[1])
)
+ if (
!family || family == 6
)
for (let subnets in subnets_group_by_masking(match_subnets[1]))
add_rule(6, devgroup, subnets, zone);
}
for (let subnets in subnets_group_by_masking(match_subnets[1]))
add_rule(6, devgroup, subnets, zone);
}