new method load_security_groups()

diff --git a/src/PVE/Firewall.pm b/src/PVE/Firewall.pm
index f6c40549ad3321e1d6f21dd8da9a7c58da2aa2b9..8594c9e0e47cb583bea125dd02df385a0b5af052 100644 (file)
--- a/src/PVE/Firewall.pm
+++ b/src/PVE/Firewall.pm
@@ -1670,11 +1670,7 @@ sub read_proc_net_route {
     return $res;
 }
 
     return $res;
 }
 

-sub compile {
-    my $vmdata = read_local_vm_config();
-    my $vmfw_configs = read_vm_firewall_configs($vmdata);
-
-    my $routing_table = read_proc_net_route();
+sub load_security_groups {

 
     my $groups_conf = {};
     my $filename = "/etc/pve/firewall/groups.fw";
 
     my $groups_conf = {};
     my $filename = "/etc/pve/firewall/groups.fw";


@@ -1682,6 +1678,17 @@ sub compile {
        $groups_conf = parse_group_fw_rules($filename, $fh);
     }
 
        $groups_conf = parse_group_fw_rules($filename, $fh);
     }
 

+    return $groups_conf;
+}
+
+sub compile {
+    my $vmdata = read_local_vm_config();
+    my $vmfw_configs = read_vm_firewall_configs($vmdata);
+
+    my $routing_table = read_proc_net_route();
+
+    my $groups_conf = load_security_groups();
+

     my $ruleset = {};
 
     ruleset_create_chain($ruleset, "PVEFW-INPUT");
     my $ruleset = {};
 
     ruleset_create_chain($ruleset, "PVEFW-INPUT");