]> git.proxmox.com Git - pve-firewall.git/commitdiff
projects / pve-firewall.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (from parent 1: 3fa83ed)
test if BRIDGEFW-OUT and BRIDGEFW-IN exist
authorAlexandre Derumier <aderumier@odiso.com>
Mon, 17 Feb 2014 12:50:26 +0000 (13:50 +0100)
committerDietmar Maurer <dietmar@proxmox.com>
Tue, 18 Feb 2014 09:31:13 +0000 (10:31 +0100)
Signed-off-by: Alexandre Derumier <aderumier@odiso.com>
PVE/Firewall.pm patch | blob | blame | history

diff --git a/PVE/Firewall.pm b/PVE/Firewall.pm
index 0c1a37afccbcc93c0de111e4f3d09b290f0f4c11..4b14871e907a8a949e22017fbd12617126149e49 100644 (file)
--- a/PVE/Firewall.pm
+++ b/PVE/Firewall.pm
@@ -277,8 +277,13 @@ sub ruleset_insertrule {
 sub generate_bridge_chains {
     my ($ruleset, $bridge) = @_;
 
-    ruleset_create_chain($ruleset, "BRIDGEFW-IN");
-    ruleset_create_chain($ruleset, "BRIDGEFW-OUT");
+    if (!ruleset_chain_exist($ruleset, "BRIDGEFW-IN")){
+       ruleset_create_chain($ruleset, "BRIDGEFW-IN");
+    }
+
+    if (!ruleset_chain_exist($ruleset, "BRIDGEFW-OUT")){
+       ruleset_create_chain($ruleset, "BRIDGEFW-OUT");
+    }
 
     if (!ruleset_chain_exist($ruleset, "proxmoxfw-FORWARD")){
        ruleset_create_chain($ruleset, "proxmoxfw-FORWARD");
@@ -618,7 +623,6 @@ sub compile {
            generate_tap_rules_direction($ruleset, $iface, $netid, $rules->{$vmid}->{out}, $bridge, 'OUT');
        }
     }
-    
     return $ruleset;
 }
 
Firewall test scripts