|
 |
3d17f4 |
commit e361f33c2bf42acb2e4db578169326b11041b796
|
|
|
3d17f4 |
Author: Jay Cornwall <jay@jcornwall.me>
|
|
|
3d17f4 |
Date: Fri May 9 07:44:52 2014 -0500
|
|
|
3d17f4 |
|
|
|
3d17f4 |
firewalld: Apply all rich rules for non-default targets
|
|
|
3d17f4 |
|
|
|
3d17f4 |
If a zone had a non-default target then rich PORT and PROTOCOL
|
|
|
3d17f4 |
rules would not be applied.
|
|
|
3d17f4 |
|
|
|
3d17f4 |
Signed-off-by: Jiri Popelka <jpopelka@redhat.com>
|
|
|
3d17f4 |
|
|
|
3d17f4 |
diff --git a/src/firewall/core/fw_zone.py b/src/firewall/core/fw_zone.py
|
|
|
3d17f4 |
index 1e99fef..7f20b48 100644
|
|
|
3d17f4 |
--- a/src/firewall/core/fw_zone.py
|
|
|
3d17f4 |
+++ b/src/firewall/core/fw_zone.py
|
|
|
3d17f4 |
@@ -820,8 +820,8 @@ class FirewallZone:
|
|
|
3d17f4 |
|
|
|
3d17f4 |
table = "filter"
|
|
|
3d17f4 |
chains.append([ table, "INPUT" ])
|
|
|
3d17f4 |
- target = self._zones[zone].target.format(chain=SHORTCUTS["INPUT"],
|
|
|
3d17f4 |
- zone=zone)
|
|
|
3d17f4 |
+ target = DEFAULT_ZONE_TARGET.format(chain=SHORTCUTS["INPUT"],
|
|
|
3d17f4 |
+ zone=zone)
|
|
|
3d17f4 |
|
|
|
3d17f4 |
command = [ ]
|
|
|
3d17f4 |
self.__rule_source(rule.source, command)
|
|
|
3d17f4 |
@@ -841,8 +841,8 @@ class FirewallZone:
|
|
|
3d17f4 |
|
|
|
3d17f4 |
table = "filter"
|
|
|
3d17f4 |
chains.append([ table, "INPUT" ])
|
|
|
3d17f4 |
- target = self._zones[zone].target.format(chain=SHORTCUTS["INPUT"],
|
|
|
3d17f4 |
- zone=zone)
|
|
|
3d17f4 |
+ target = DEFAULT_ZONE_TARGET.format(chain=SHORTCUTS["INPUT"],
|
|
|
3d17f4 |
+ zone=zone)
|
|
|
3d17f4 |
|
|
|
3d17f4 |
command = [ ]
|
|
|
3d17f4 |
self.__rule_source(rule.source, command)
|