diff options
author | David Sommerseth <davids@redhat.com> | 2015-09-25 22:56:06 +0200 |
---|---|---|
committer | David Sommerseth <davids@redhat.com> | 2015-09-25 22:56:06 +0200 |
commit | fc91905b646e64584f5a9c48e61c530744d33551 (patch) | |
tree | 764078fb8b0b03f32d575e3485ab5fd04d549662 | |
parent | 43ef6665c45893ea8d9bb3ac6925b321eb01318c (diff) | |
download | logactio-fc91905b646e64584f5a9c48e61c530744d33551.tar.gz logactio-fc91905b646e64584f5a9c48e61c530744d33551.tar.xz logactio-fc91905b646e64584f5a9c48e61c530744d33551.zip |
Fix iptables cleanup bug
Signed-off-by: David Sommerseth <davids@redhat.com>
-rw-r--r-- | LogActio/Reporters/IPTipset.py | 12 |
1 files changed, 9 insertions, 3 deletions
diff --git a/LogActio/Reporters/IPTipset.py b/LogActio/Reporters/IPTipset.py index a033cd3..baf4b68 100644 --- a/LogActio/Reporters/IPTipset.py +++ b/LogActio/Reporters/IPTipset.py @@ -226,7 +226,13 @@ class IPTipset(LogActio.ReporterQueue.ReporterQueue): for chain in self.__iptchains: # Prepare iptables command line - args = ["iptables", "-D", chain, + args = False + if self.__iptchaininserts and self.__iptchaininserts.has_key(chain): + args = ["iptables", "-D", chain, self.__iptchaininserts[chain], + "-m", "set", "--match-set", self.__ipsetname, + "-j", self.__iptchainsjump] + else: + args = ["iptables", "-D", chain, "-m", "set", "--match-set", self.__ipsetname, "src", "-j", self.__iptchainsjump] @@ -276,8 +282,8 @@ class IPTipset(LogActio.ReporterQueue.ReporterQueue): registered.append(m["ipaddress"]) - # self.__cleanup_iptables() # Not working - not getting a match ... iptables bug? - + if self.__iptchains: + self.__cleanup_iptables() self.__log(3, "[IPTipset] Module shut down") |