diff options
author | Manuel Munz <freifunk@somakoma.de> | 2011-02-12 17:07:56 +0000 |
---|---|---|
committer | Manuel Munz <freifunk@somakoma.de> | 2011-02-12 17:07:56 +0000 |
commit | e3a39de81a4f818ba5e4896bfc4c073885488981 (patch) | |
tree | 83968e6b15263500d2ca5877d6851896cdb317c2 /contrib/package/freifunk-firewall/files/etc/hotplug.d | |
parent | 1f9e2e6e771a478d19a6629499d4bcf88721a024 (diff) |
contrib/freifunk-firewall: use extrapositioned negation
Diffstat (limited to 'contrib/package/freifunk-firewall/files/etc/hotplug.d')
-rw-r--r-- | contrib/package/freifunk-firewall/files/etc/hotplug.d/firewall/23-restricted-wan | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/contrib/package/freifunk-firewall/files/etc/hotplug.d/firewall/23-restricted-wan b/contrib/package/freifunk-firewall/files/etc/hotplug.d/firewall/23-restricted-wan index d0795b629f..ed40ff48d6 100644 --- a/contrib/package/freifunk-firewall/files/etc/hotplug.d/firewall/23-restricted-wan +++ b/contrib/package/freifunk-firewall/files/etc/hotplug.d/firewall/23-restricted-wan @@ -18,8 +18,8 @@ clear_restricted_gw() config_get gateway "$state" gateway logger -t firewall.freifunk "removing local restriction to $iface($gateway)" - iptables -D "zone_${INTERFACE}_ACCEPT" -i ! $ifname -o $ifname -d $ipaddr/$netmask -j REJECT - iptables -D "zone_${INTERFACE}_ACCEPT" -i ! $ifname -o $ifname -d $gateway -j ACCEPT + iptables -D "zone_${INTERFACE}_ACCEPT" ! -i $ifname -o $ifname -d $ipaddr/$netmask -j REJECT + iptables -D "zone_${INTERFACE}_ACCEPT" ! -i $ifname -o $ifname -d $gateway -j ACCEPT uci_revert_state firewall "$state" fi @@ -56,8 +56,8 @@ if [ "$ACTION" = add ]; then if [ "$local_restrict" = 1 ]; then logger -t firewall.freifunk "restricting local access to $DEVICE($gateway)" - iptables -I "zone_${INTERFACE}_ACCEPT" -i ! $DEVICE -o $DEVICE -d $ipaddr/$netmask -j REJECT - iptables -I "zone_${INTERFACE}_ACCEPT" -i ! $DEVICE -o $DEVICE -d $gateway -j ACCEPT + iptables -I "zone_${INTERFACE}_ACCEPT" ! -i $DEVICE -o $DEVICE -d $ipaddr/$netmask -j REJECT + iptables -I "zone_${INTERFACE}_ACCEPT" ! -i $DEVICE -o $DEVICE -d $gateway -j ACCEPT local state="restricted_gw_${INTERFACE}" uci_set_state firewall "$state" "" restricted_gw_state |