mirror of
https://github.com/fwbuilder/fwbuilder
synced 2026-03-18 17:27:20 +01:00
09f29554c8
fixes #1234 When failover group object is used in the rule, rule gets placed in FORWARD chain. Working implementation follows these rules: 1) if cluster interface obejct is used in the rule, it is expanded to the set of addresses including cluster virtual IP address and all addresses of the corresponding member firewall interface; 2) Failover Group is treated as any regular object group. Expanding Failover group to the address of its parent (cluster interface) would work but seems counter-intuitive
13 lines
251 B
Bash
Executable File
13 lines
251 B
Bash
Executable File
#!/bin/sh
|
|
|
|
|
|
XMLFILE="cluster-tests.fwb"
|
|
fwbedit list -f $XMLFILE -o /User/Clusters -c -F%name% | \
|
|
sort | while read fwobj
|
|
do
|
|
echo "echo"
|
|
echo "echo \"============================ $fwobj\""
|
|
echo "fwb_ipt -v -f $XMLFILE -xt -xc $fwobj"
|
|
done
|
|
|