diff options
| author | Phil Sutter <phil@nwl.cc> | 2023-11-15 13:55:08 +0100 |
|---|---|---|
| committer | Phil Sutter <phil@nwl.cc> | 2023-11-29 02:33:03 +0100 |
| commit | b2197e7834f779e8b28b80bc58bb58179360f66b (patch) | |
| tree | 9f3196b9054f0bfe5e751745d5e0fee571fffd64 /iptables/iptables.c | |
| parent | 9c09d28102bb4bd833b1a814c0766e89250dbc1e (diff) | |
xshared: Entirely ignore interface masks when saving rules
Rule printing code does this for more than 20 years now, assume it's
safe to rely upon the wildcard interface name to contain a '+' suffix.
Signed-off-by: Phil Sutter <phil@nwl.cc>
Diffstat (limited to 'iptables/iptables.c')
| -rw-r--r-- | iptables/iptables.c | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/iptables/iptables.c b/iptables/iptables.c index a73e8eed..ce65c30a 100644 --- a/iptables/iptables.c +++ b/iptables/iptables.c @@ -516,8 +516,7 @@ void print_rule4(const struct ipt_entry *e, save_ipv4_addr('d', &e->ip.dst, &e->ip.dmsk, e->ip.invflags & IPT_INV_DSTIP); - save_rule_details(e->ip.iniface, e->ip.iniface_mask, - e->ip.outiface, e->ip.outiface_mask, + save_rule_details(e->ip.iniface, e->ip.outiface, e->ip.proto, e->ip.flags & IPT_F_FRAG, e->ip.invflags); |