}
setbit(zone->flags[0], fw3_to_src_target(zone->policy_input));
- setbit(zone->flags[0], fw3_to_src_target(zone->policy_forward));
+ setbit(zone->flags[0], zone->policy_forward);
setbit(zone->flags[0], zone->policy_output);
setbit(zone->flags[1], fw3_to_src_target(zone->policy_input));
- setbit(zone->flags[1], fw3_to_src_target(zone->policy_forward));
+ setbit(zone->flags[1], zone->policy_forward);
setbit(zone->flags[1], zone->policy_output);
list_add_tail(&zone->list, &state->zones);
fw3_ipt_rule_append(r, "zone_%s_input", zone->name);
r = fw3_ipt_rule_new(handle);
- fw3_ipt_rule_target(r, "zone_%s_src_%s", zone->name,
+ fw3_ipt_rule_target(r, "zone_%s_dest_%s", zone->name,
fw3_flag_names[zone->policy_forward]);
fw3_ipt_rule_append(r, "zone_%s_forward", zone->name);
{
struct fw3_device *net;
struct fw3_address *addr, *tmp;
- struct list_head *addrs, *all;
+ struct list_head *all;
all = calloc(1, sizeof(*all));
if (!all)
INIT_LIST_HEAD(all);
list_for_each_entry(net, &zone->networks, list)
- {
- addrs = fw3_ubus_address(net->name);
-
- if (!addrs)
- continue;
-
- list_for_each_entry_safe(addr, tmp, addrs, list)
- {
- list_del(&addr->list);
- list_add_tail(&addr->list, all);
- }
-
- free(addrs);
- }
+ fw3_ubus_address(all, net->name);
list_for_each_entry(addr, &zone->subnets, list)
{
projects / project / firewall3.git / blobdiff