From: Alexandre Derumier <aderumier@odiso.com>
Date: Mon, 17 Feb 2014 12:50:26 +0000 (+0100)
Subject: test if BRIDGEFW-OUT and BRIDGEFW-IN exist
X-Git-Url: https://git.proxmox.com/?p=pve-firewall.git;a=commitdiff_plain;h=d4d0fd1d54652dceb42542fc576878cf5f9a95b6

test if BRIDGEFW-OUT and BRIDGEFW-IN exist

Signed-off-by: Alexandre Derumier <aderumier@odiso.com>
---

diff --git a/PVE/Firewall.pm b/PVE/Firewall.pm
index 0c1a37a..4b14871 100644
--- a/PVE/Firewall.pm
+++ b/PVE/Firewall.pm
@@ -277,8 +277,13 @@ sub ruleset_insertrule {
 sub generate_bridge_chains {
     my ($ruleset, $bridge) = @_;
 
-    ruleset_create_chain($ruleset, "BRIDGEFW-IN");
-    ruleset_create_chain($ruleset, "BRIDGEFW-OUT");
+    if (!ruleset_chain_exist($ruleset, "BRIDGEFW-IN")){
+	ruleset_create_chain($ruleset, "BRIDGEFW-IN");
+    }
+
+    if (!ruleset_chain_exist($ruleset, "BRIDGEFW-OUT")){
+	ruleset_create_chain($ruleset, "BRIDGEFW-OUT");
+    }
 
     if (!ruleset_chain_exist($ruleset, "proxmoxfw-FORWARD")){
 	ruleset_create_chain($ruleset, "proxmoxfw-FORWARD");
@@ -618,7 +623,6 @@ sub compile {
 	    generate_tap_rules_direction($ruleset, $iface, $netid, $rules->{$vmid}->{out}, $bridge, 'OUT');
 	}
     }
-    
     return $ruleset;
 }