1 --- firewall-init-2.1/firewall.init.orig Mon Nov 11 10:48:08 2002
2 +++ firewall-init-2.1/firewall.init Mon Mar 29 09:16:27 2004
5 [ -f /sbin/ipchains ] || exit 0
9 + echo $2: "$(nls "$1")"
15 # Turn IP forwarding on or off. We do this before bringing up the
17 for CHAIN in ${FILES}; do
18 if [ -s ${CHAIN} ]; then
19 grep -v '^#' ${CHAIN} | grep -v '^$' | \
20 - while read POLICY PROTO SADDR SPORT DADDR DPORT IFACE OPTIONS ; do
22 + #POLICY PROTO SADDR SPORT DADDR DPORT IFACE OPTIONS
25 + LINE2=${LINE2#$POLICY}; LINE2=${LINE2# }
37 + LINE2=${LINE2#$PROTO}; LINE2=${LINE2# }
44 + LINE2=${LINE2#$PROTO2}; LINE2=${LINE2# }
45 + PROTO="-p ! ${PROTO2}"
51 + LINE2=${LINE2#$SADDR}; LINE2=${LINE2# }
55 + LINE2=${LINE2#$SADDR2}; LINE2=${LINE2# }
60 + LINE2=${LINE2#$SPORT}; LINE2=${LINE2# }
72 + LINE2=${LINE2#$SPORT2}; LINE2=${LINE2# }
79 + if [ -z "$PROTO" ]; then
80 + syntax_error "Source port is illegal in line:" "$CHAIN" "$LINE"
87 + if [ -z "$PROTO" ]; then
88 + syntax_error "Source port is illegal in line:" "$CHAIN" "$LINE"
91 + if [ -z "${DADDR}" ]; then
93 + LINE2=${LINE2#$DADDR}; LINE2=${LINE2# }
98 + LINE2=${LINE2#$DADDR2}; LINE2=${LINE2# }
103 + LINE2=${LINE2#$DPORT}; LINE2=${LINE2# }
106 0:65535|[Aa][Nn][Yy])
109 + eth[+0-9]*|lo|ppp[+0-9]*|tunl[+0-9]*)
114 + DPORT2=${LINE2%% *}
115 + LINE2=${LINE2#$DPORT2}; LINE2=${LINE2# }
116 + case "${DPORT2}" in
117 + eth[+0-9]*|lo|ppp[+0-9]*|tunl[+0-9]*)
118 + IFACE="! ${DPORT2}"
122 + if [ -z "$PROTO" ]; then
123 + syntax_error "Destination port is illegal in line:" "$CHAIN" "$LINE"
125 + DPORT="! ${DPORT2}"
130 + if [ -z "$PROTO" ]; then
131 + syntax_error "Destination port is illegal in line:" "$CHAIN" "$LINE"
134 + if [ -z "${IFACE}" ]; then
136 + LINE2=${LINE2#$IFACE}; LINE2=${LINE2# }
143 + IFACE2=${LINE2%% *}
144 + LINE2=${LINE2#$IFACE2}; LINE2=${LINE2# }
145 + IFACE="-i ! ${IFACE2}"
151 - /sbin/ipchains -A ${CHAIN} -p ${PROTO} ${IFACE} \
153 + /sbin/ipchains -A ${CHAIN} ${PROTO} ${IFACE} \
154 -s ${SADDR} ${SPORT} -d ${DADDR} ${DPORT} ${POLICY} ${OPTIONS} 2>> /tmp/.firewall
159 for MODNAME in ${MASQ_MODS}; do
160 - insmod ${MODNAME} > /dev/null 2> /dev/null
161 + insmod ${MODNAME} > /dev/null 2> /dev/null
164 if [ -s /tmp/.firewall ]; then
165 grep -v '^Try' < /tmp/.firewall | logger -t 'firewall' -p user.notice
168 - echo 'PROBLEMS SETTING UP FIREWALL. CHECK /var/log/messages!'
169 + echo $(nls 'PROBLEMS SETTING UP FIREWALL. CHECK /var/log/messages!')
176 for MODNAME in ${MASQ_MODS}; do
177 - rmmod ${MODNAME} > /dev/null 2> /dev/null
178 + rmmod ${MODNAME} > /dev/null 2> /dev/null