Commit fe55e790 authored by Franco Fichtner's avatar Franco Fichtner

filter: convert filter_generate_user_rule et al

(cherry picked from commit 4345a674)
parent ddfbb5c5
...@@ -2151,11 +2151,14 @@ function filter_nat_rules_generate(&$FilterIflist) ...@@ -2151,11 +2151,14 @@ function filter_nat_rules_generate(&$FilterIflist)
return $natrules; return $natrules;
} }
function filter_generate_user_rule_arr($rule) { function filter_generate_user_rule_arr(&$FilterIflist, $rule)
{
global $config; global $config;
update_filter_reload_status(sprintf(gettext("Creating filter rule %s ..."), $rule['descr'])); update_filter_reload_status(sprintf(gettext("Creating filter rule %s ..."), $rule['descr']));
$ret = array(); $ret = array();
$line = filter_generate_user_rule($rule); $line = filter_generate_user_rule($FilterIflist, $rule);
$ret['rule'] = $line; $ret['rule'] = $line;
$ret['interface'] = $rule['interface']; $ret['interface'] = $rule['interface'];
if($rule['descr'] != "" and $line != "") { if($rule['descr'] != "" and $line != "") {
...@@ -2163,6 +2166,7 @@ function filter_generate_user_rule_arr($rule) { ...@@ -2163,6 +2166,7 @@ function filter_generate_user_rule_arr($rule) {
} else { } else {
$ret['descr'] = "label \"USER_RULE\""; $ret['descr'] = "label \"USER_RULE\"";
} }
return $ret; return $ret;
} }
...@@ -2415,10 +2419,9 @@ function filter_generate_address(& $rule, $target = "source", $isnat = false) { ...@@ -2415,10 +2419,9 @@ function filter_generate_address(& $rule, $target = "source", $isnat = false) {
return $src; return $src;
} }
function filter_generate_user_rule($rule) function filter_generate_user_rule(&$FilterIflist, $rule)
{ {
global $config, $g, $GatewaysList; global $config, $g, $GatewaysList;
$FilterIflist = filter_generate_optcfg_array() ;
/* don't include disabled rules */ /* don't include disabled rules */
if(isset($rule['disabled'])) { if(isset($rule['disabled'])) {
...@@ -3279,28 +3282,28 @@ EOD; ...@@ -3279,28 +3282,28 @@ EOD;
if (!empty($rule['ipprotocol']) && $rule['ipprotocol'] == "inet46") { if (!empty($rule['ipprotocol']) && $rule['ipprotocol'] == "inet46") {
if (isset($rule['floating'])) { if (isset($rule['floating'])) {
$rule['ipprotocol'] = "inet"; $rule['ipprotocol'] = "inet";
$rule_arr1[] = filter_generate_user_rule_arr($rule); $rule_arr1[] = filter_generate_user_rule_arr($FilterIflist, $rule);
$rule['ipprotocol'] = "inet6"; $rule['ipprotocol'] = "inet6";
$rule_arr1[] = filter_generate_user_rule_arr($rule); $rule_arr1[] = filter_generate_user_rule_arr($FilterIflist, $rule);
} else if (is_interface_group($rule['interface']) || in_array($rule['interface'], $vpn_and_ppp_ifs)) { } else if (is_interface_group($rule['interface']) || in_array($rule['interface'], $vpn_and_ppp_ifs)) {
$rule['ipprotocol'] = "inet"; $rule['ipprotocol'] = "inet";
$rule_arr2[] = filter_generate_user_rule_arr($rule); $rule_arr2[] = filter_generate_user_rule_arr($FilterIflist, $rule);
$rule['ipprotocol'] = "inet6"; $rule['ipprotocol'] = "inet6";
$rule_arr2[] = filter_generate_user_rule_arr($rule); $rule_arr2[] = filter_generate_user_rule_arr($FilterIflist, $rule);
} else { } else {
$rule['ipprotocol'] = "inet"; $rule['ipprotocol'] = "inet";
$rule_arr3[] = filter_generate_user_rule_arr($rule); $rule_arr3[] = filter_generate_user_rule_arr($FilterIflist, $rule);
$rule['ipprotocol'] = "inet6"; $rule['ipprotocol'] = "inet6";
$rule_arr3[] = filter_generate_user_rule_arr($rule); $rule_arr3[] = filter_generate_user_rule_arr($FilterIflist, $rule);
} }
$rule['ipprotocol'] = "inet46"; $rule['ipprotocol'] = "inet46";
} else { } else {
if (isset($rule['floating'])) { if (isset($rule['floating'])) {
$rule_arr1[] = filter_generate_user_rule_arr($rule); $rule_arr1[] = filter_generate_user_rule_arr($FilterIflist, $rule);
} elseif (is_interface_group($rule['interface']) || in_array($rule['interface'], $vpn_and_ppp_ifs)) { } elseif (is_interface_group($rule['interface']) || in_array($rule['interface'], $vpn_and_ppp_ifs)) {
$rule_arr2[] = filter_generate_user_rule_arr($rule); $rule_arr2[] = filter_generate_user_rule_arr($FilterIflist, $rule);
} else { } else {
$rule_arr3[] = filter_generate_user_rule_arr($rule); $rule_arr3[] = filter_generate_user_rule_arr($FilterIflist, $rule);
} }
} }
if (isset($rule['sched']) && !empty($rule['sched'])) { if (isset($rule['sched']) && !empty($rule['sched'])) {
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment