summaryrefslogtreecommitdiff
path: root/package/firewall/files/20-firewall
blob: 1cfc1b9c0e266a708af2dd424fbe0b83c93e6113 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
. /lib/firewall/uci_firewall.sh
unset ZONE
config_get ifname $INTERFACE ifname
[ "$ifname" == "lo" ] && exit 0

load_zones() {
	local name
	local network
	config_get name $1 name
	config_get network $1 network
	[ -z "$network" ] && network=$name 
	for n in $network; do
		[ "$n" = "$INTERFACE" ] && ZONE="$ZONE $name"
	done
}

config_foreach load_zones zone

[ -z "$ZONE" ] && exit 0

[ ifup = "$ACTION" ] && {
	for z in $ZONE; do 
		local loaded
		config_get loaded core loaded
		[ -n "$loaded" ] && addif "$INTERFACE" "$ifname" "$z"
	done
}

[ ifdown = "$ACTION" ] && {
	local up
	config_get up "$INTERFACE" up

	for z in $ZONE; do 
		[ "$up" == "1" ] && delif "$INTERFACE" "$ifname" "$z"
	done
}