Replace -s with -d for address filtering in LOG

This commit is contained in:
jeltz 2021-03-01 19:36:42 +01:00 committed by root
parent 1ad2cc334c
commit 44b9573c10

View file

@ -509,10 +509,10 @@ class iptables:
self.jump_all_trafic("mangle", "PREROUTING", subtable)
for net in self.log_ignore_v4:
self.add_in_subtable("mangle4", subtable, f'-s {net} -j RETURN')
self.add_in_subtable("mangle4", subtable, f'-d {net} -j RETURN')
for net in self.log_ignore_v6:
self.add_in_subtable("mangle6", subtable, f'-s {net} -j RETURN')
self.add_in_subtable("mangle6", subtable, f'-d {net} -j RETURN')
self.add_in_subtable("mangle", subtable, '-m state --state NEW -j LOG --log-prefix "LOG_ALL "')