From 6a335579b8e63886c2beed4aee72ab2f335a7d2e Mon Sep 17 00:00:00 2001
From: Jo-Philipp Wich <jow@openwrt.org>
Date: Tue, 28 Sep 2010 10:42:56 +0000
Subject: fireall: - support negations for src_ip, dest_ip, src_dip options in
 rules and redirects - add NOTRACK target to rule sections, allows to define
 fine grained notrack rules

SVN-Revision: 23141
---
 package/firewall/files/lib/core_init.sh | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'package/firewall/files/lib/core_init.sh')

diff --git a/package/firewall/files/lib/core_init.sh b/package/firewall/files/lib/core_init.sh
index 56e19b7..c7e41e7 100644
--- a/package/firewall/files/lib/core_init.sh
+++ b/package/firewall/files/lib/core_init.sh
@@ -245,9 +245,9 @@ fw_load_zone() {
 	if [ "$zone_masq" == 1 ]; then
 		local msrc mdst
 		for msrc in ${zone_masq_src:-0.0.0.0/0}; do
-			[ "${msrc#!}" != "$msrc" ] && msrc="! -s ${msrc#!}" || msrc="-s $msrc"
+			fw_get_negation msrc '-s' "$msrc"
 			for mdst in ${zone_masq_dest:-0.0.0.0/0}; do
-				[ "${mdst#!}" != "$mdst" ] && mdst="! -d ${mdst#!}" || mdst="-d $mdst"
+				fw_get_negation mdst '-d' "$mdst"
 				fw add $mode n ${chain}_nat MASQUERADE $ { $msrc $mdst }
 			done
 		done
-- 
cgit v1.1