git-svn-id: svn://svn.openwrt.org/openwrt/branches/backfire@23324
3c298f89-4303-0410-b956-
a3cf2f4a3e73
PKG_NAME:=firewall
PKG_VERSION:=1
PKG_NAME:=firewall
PKG_VERSION:=1
include $(INCLUDE_DIR)/package.mk
include $(INCLUDE_DIR)/package.mk
[ -n "$dest" ] && TARGET="zone_${dest}_${TARGET}"
fi
[ -n "$dest" ] && TARGET="zone_${dest}_${TARGET}"
fi
- eval 'RULE_COUNT=$((++RULE_COUNT_'$ZONE'))'
+ local pos
+ eval 'pos=$((++FW__RULE_COUNT_'$ZONE'))'
- $IPTABLES -t $TABLE -I $ZONE $RULE_COUNT \
+ $IPTABLES -t $TABLE -I $ZONE $pos \
$srcaddr $destaddr \
${proto:+-p $proto} \
${icmp_type:+--icmp-type $icmp_type} \
$srcaddr $destaddr \
${proto:+-p $proto} \
${icmp_type:+--icmp-type $icmp_type} \
get_portrange destports "${dest_port-$src_dport}" ":"
add_rule() {
get_portrange destports "${dest_port-$src_dport}" ":"
add_rule() {
- $IPTABLES -I $natchain 1 -t nat \
+ local pos
+ eval 'pos=$((++FW__REDIR_COUNT_'$natchain'))'
+
+ $IPTABLES -I $natchain $pos -t nat \
$srcaddr $srcdaddr \
${proto:+-p $proto} \
${srcports:+--sport $srcports} \
$srcaddr $srcdaddr \
${proto:+-p $proto} \
${srcports:+--sport $srcports} \