From d4d0fd1d54652dceb42542fc576878cf5f9a95b6 Mon Sep 17 00:00:00 2001
From: Alexandre Derumier <aderumier@odiso.com>
Date: Mon, 17 Feb 2014 13:50:26 +0100
Subject: [PATCH] test if BRIDGEFW-OUT and BRIDGEFW-IN exist

Signed-off-by: Alexandre Derumier <aderumier@odiso.com>
---
 PVE/Firewall.pm | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/PVE/Firewall.pm b/PVE/Firewall.pm
index 0c1a37a..4b14871 100644
--- a/PVE/Firewall.pm
+++ b/PVE/Firewall.pm
@@ -277,8 +277,13 @@ sub ruleset_insertrule {
 sub generate_bridge_chains {
     my ($ruleset, $bridge) = @_;
 
-    ruleset_create_chain($ruleset, "BRIDGEFW-IN");
-    ruleset_create_chain($ruleset, "BRIDGEFW-OUT");
+    if (!ruleset_chain_exist($ruleset, "BRIDGEFW-IN")){
+	ruleset_create_chain($ruleset, "BRIDGEFW-IN");
+    }
+
+    if (!ruleset_chain_exist($ruleset, "BRIDGEFW-OUT")){
+	ruleset_create_chain($ruleset, "BRIDGEFW-OUT");
+    }
 
     if (!ruleset_chain_exist($ruleset, "proxmoxfw-FORWARD")){
 	ruleset_create_chain($ruleset, "proxmoxfw-FORWARD");
@@ -618,7 +623,6 @@ sub compile {
 	    generate_tap_rules_direction($ruleset, $iface, $netid, $rules->{$vmid}->{out}, $bridge, 'OUT');
 	}
     }
-    
     return $ruleset;
 }
 
-- 
2.39.2