Commit 6d92d919 authored by Kaarle Ritvanen's avatar Kaarle Ritvanen

Rule.combine: ensure one limit per logging rule

parent b28ebbd3
...@@ -464,6 +464,8 @@ function M.Rule:combine(ofs1, ofs2, key, unique) ...@@ -464,6 +464,8 @@ function M.Rule:combine(ofs1, ofs2, key, unique)
if #comb < #ofs then return connect() end if #comb < #ofs then return connect() end
if unique then if unique then
if #self:convertchains{of} > 1 then return connect() end
for _, c in ipairs(comb) do for _, c in ipairs(comb) do
if c.family then if c.family then
if not created then created = {} if not created then created = {}
......
This source diff could not be displayed because it is too large. You can view the blob instead.
...@@ -144,6 +144,7 @@ ...@@ -144,6 +144,7 @@
:limit-1006 - [0:0] :limit-1006 - [0:0]
:limit-1007 - [0:0] :limit-1007 - [0:0]
:limit-1008 - [0:0] :limit-1008 - [0:0]
:limit-101 - [0:0]
:limit-1010 - [0:0] :limit-1010 - [0:0]
:limit-1011 - [0:0] :limit-1011 - [0:0]
:limit-1012 - [0:0] :limit-1012 - [0:0]
...@@ -209,10 +210,12 @@ ...@@ -209,10 +210,12 @@
:limit-1072 - [0:0] :limit-1072 - [0:0]
:limit-1073 - [0:0] :limit-1073 - [0:0]
:limit-108 - [0:0] :limit-108 - [0:0]
:limit-109 - [0:0]
:limit-11 - [0:0] :limit-11 - [0:0]
:limit-110 - [0:0] :limit-110 - [0:0]
:limit-111 - [0:0] :limit-111 - [0:0]
:limit-112 - [0:0] :limit-112 - [0:0]
:limit-113 - [0:0]
:limit-114 - [0:0] :limit-114 - [0:0]
:limit-115 - [0:0] :limit-115 - [0:0]
:limit-116 - [0:0] :limit-116 - [0:0]
...@@ -227,10 +230,12 @@ ...@@ -227,10 +230,12 @@
:limit-124 - [0:0] :limit-124 - [0:0]
:limit-125 - [0:0] :limit-125 - [0:0]
:limit-126 - [0:0] :limit-126 - [0:0]
:limit-127 - [0:0]
:limit-128 - [0:0] :limit-128 - [0:0]
:limit-129 - [0:0] :limit-129 - [0:0]
:limit-13 - [0:0] :limit-13 - [0:0]
:limit-130 - [0:0] :limit-130 - [0:0]
:limit-131 - [0:0]
:limit-132 - [0:0] :limit-132 - [0:0]
:limit-133 - [0:0] :limit-133 - [0:0]
:limit-134 - [0:0] :limit-134 - [0:0]
...@@ -238,10 +243,12 @@ ...@@ -238,10 +243,12 @@
:limit-136 - [0:0] :limit-136 - [0:0]
:limit-137 - [0:0] :limit-137 - [0:0]
:limit-138 - [0:0] :limit-138 - [0:0]
:limit-139 - [0:0]
:limit-14 - [0:0] :limit-14 - [0:0]
:limit-140 - [0:0] :limit-140 - [0:0]
:limit-141 - [0:0] :limit-141 - [0:0]
:limit-142 - [0:0] :limit-142 - [0:0]
:limit-143 - [0:0]
:limit-144 - [0:0] :limit-144 - [0:0]
:limit-145 - [0:0] :limit-145 - [0:0]
:limit-146 - [0:0] :limit-146 - [0:0]
...@@ -250,9 +257,11 @@ ...@@ -250,9 +257,11 @@
:limit-149 - [0:0] :limit-149 - [0:0]
:limit-15 - [0:0] :limit-15 - [0:0]
:limit-150 - [0:0] :limit-150 - [0:0]
:limit-151 - [0:0]
:limit-152 - [0:0] :limit-152 - [0:0]
:limit-153 - [0:0] :limit-153 - [0:0]
:limit-154 - [0:0] :limit-154 - [0:0]
:limit-155 - [0:0]
:limit-156 - [0:0] :limit-156 - [0:0]
:limit-157 - [0:0] :limit-157 - [0:0]
:limit-158 - [0:0] :limit-158 - [0:0]
...@@ -261,9 +270,11 @@ ...@@ -261,9 +270,11 @@
:limit-160 - [0:0] :limit-160 - [0:0]
:limit-161 - [0:0] :limit-161 - [0:0]
:limit-162 - [0:0] :limit-162 - [0:0]
:limit-163 - [0:0]
:limit-164 - [0:0] :limit-164 - [0:0]
:limit-165 - [0:0] :limit-165 - [0:0]
:limit-166 - [0:0] :limit-166 - [0:0]
:limit-167 - [0:0]
:limit-168 - [0:0] :limit-168 - [0:0]
:limit-169 - [0:0] :limit-169 - [0:0]
:limit-17 - [0:0] :limit-17 - [0:0]
...@@ -279,19 +290,24 @@ ...@@ -279,19 +290,24 @@
:limit-179 - [0:0] :limit-179 - [0:0]
:limit-18 - [0:0] :limit-18 - [0:0]
:limit-180 - [0:0] :limit-180 - [0:0]
:limit-181 - [0:0]
:limit-182 - [0:0] :limit-182 - [0:0]
:limit-183 - [0:0] :limit-183 - [0:0]
:limit-184 - [0:0] :limit-184 - [0:0]
:limit-185 - [0:0]
:limit-186 - [0:0] :limit-186 - [0:0]
:limit-187 - [0:0] :limit-187 - [0:0]
:limit-188 - [0:0] :limit-188 - [0:0]
:limit-189 - [0:0] :limit-189 - [0:0]
:limit-19 - [0:0]
:limit-190 - [0:0] :limit-190 - [0:0]
:limit-191 - [0:0] :limit-191 - [0:0]
:limit-192 - [0:0] :limit-192 - [0:0]
:limit-193 - [0:0]
:limit-194 - [0:0] :limit-194 - [0:0]
:limit-195 - [0:0] :limit-195 - [0:0]
:limit-196 - [0:0] :limit-196 - [0:0]
:limit-197 - [0:0]
:limit-198 - [0:0] :limit-198 - [0:0]
:limit-199 - [0:0] :limit-199 - [0:0]
:limit-2 - [0:0] :limit-2 - [0:0]
...@@ -301,9 +317,11 @@ ...@@ -301,9 +317,11 @@
:limit-202 - [0:0] :limit-202 - [0:0]
:limit-203 - [0:0] :limit-203 - [0:0]
:limit-204 - [0:0] :limit-204 - [0:0]
:limit-205 - [0:0]
:limit-206 - [0:0] :limit-206 - [0:0]
:limit-207 - [0:0] :limit-207 - [0:0]
:limit-208 - [0:0] :limit-208 - [0:0]
:limit-209 - [0:0]
:limit-21 - [0:0] :limit-21 - [0:0]
:limit-210 - [0:0] :limit-210 - [0:0]
:limit-211 - [0:0] :limit-211 - [0:0]
...@@ -312,10 +330,12 @@ ...@@ -312,10 +330,12 @@
:limit-214 - [0:0] :limit-214 - [0:0]
:limit-215 - [0:0] :limit-215 - [0:0]
:limit-216 - [0:0] :limit-216 - [0:0]
:limit-217 - [0:0]
:limit-218 - [0:0] :limit-218 - [0:0]
:limit-219 - [0:0] :limit-219 - [0:0]
:limit-22 - [0:0] :limit-22 - [0:0]
:limit-220 - [0:0] :limit-220 - [0:0]
:limit-221 - [0:0]
:limit-222 - [0:0] :limit-222 - [0:0]
:limit-223 - [0:0] :limit-223 - [0:0]
:limit-224 - [0:0] :limit-224 - [0:0]
...@@ -324,14 +344,17 @@ ...@@ -324,14 +344,17 @@
:limit-227 - [0:0] :limit-227 - [0:0]
:limit-228 - [0:0] :limit-228 - [0:0]
:limit-229 - [0:0] :limit-229 - [0:0]
:limit-23 - [0:0]
:limit-230 - [0:0] :limit-230 - [0:0]
:limit-231 - [0:0] :limit-231 - [0:0]
:limit-232 - [0:0] :limit-232 - [0:0]
:limit-233 - [0:0] :limit-233 - [0:0]
:limit-234 - [0:0] :limit-234 - [0:0]
:limit-235 - [0:0]
:limit-236 - [0:0] :limit-236 - [0:0]
:limit-237 - [0:0] :limit-237 - [0:0]
:limit-238 - [0:0] :limit-238 - [0:0]
:limit-239 - [0:0]
:limit-24 - [0:0] :limit-24 - [0:0]
:limit-240 - [0:0] :limit-240 - [0:0]
:limit-241 - [0:0] :limit-241 - [0:0]
...@@ -340,10 +363,12 @@ ...@@ -340,10 +363,12 @@
:limit-244 - [0:0] :limit-244 - [0:0]
:limit-245 - [0:0] :limit-245 - [0:0]
:limit-246 - [0:0] :limit-246 - [0:0]
:limit-247 - [0:0]
:limit-248 - [0:0] :limit-248 - [0:0]
:limit-249 - [0:0] :limit-249 - [0:0]
:limit-25 - [0:0] :limit-25 - [0:0]
:limit-250 - [0:0] :limit-250 - [0:0]
:limit-251 - [0:0]
:limit-252 - [0:0] :limit-252 - [0:0]
:limit-253 - [0:0] :limit-253 - [0:0]
:limit-254 - [0:0] :limit-254 - [0:0]
...@@ -351,10 +376,12 @@ ...@@ -351,10 +376,12 @@
:limit-256 - [0:0] :limit-256 - [0:0]
:limit-257 - [0:0] :limit-257 - [0:0]
:limit-258 - [0:0] :limit-258 - [0:0]
:limit-259 - [0:0]
:limit-26 - [0:0] :limit-26 - [0:0]
:limit-260 - [0:0] :limit-260 - [0:0]
:limit-261 - [0:0] :limit-261 - [0:0]
:limit-262 - [0:0] :limit-262 - [0:0]
:limit-263 - [0:0]
:limit-264 - [0:0] :limit-264 - [0:0]
:limit-265 - [0:0] :limit-265 - [0:0]
:limit-266 - [0:0] :limit-266 - [0:0]
...@@ -363,9 +390,11 @@ ...@@ -363,9 +390,11 @@
:limit-269 - [0:0] :limit-269 - [0:0]
:limit-27 - [0:0] :limit-27 - [0:0]
:limit-270 - [0:0] :limit-270 - [0:0]
:limit-271 - [0:0]
:limit-272 - [0:0] :limit-272 - [0:0]
:limit-273 - [0:0] :limit-273 - [0:0]
:limit-274 - [0:0] :limit-274 - [0:0]
:limit-275 - [0:0]
:limit-276 - [0:0] :limit-276 - [0:0]
:limit-277 - [0:0] :limit-277 - [0:0]
:limit-278 - [0:0] :limit-278 - [0:0]
...@@ -380,10 +409,12 @@ ...@@ -380,10 +409,12 @@
:limit-286 - [0:0] :limit-286 - [0:0]
:limit-287 - [0:0] :limit-287 - [0:0]
:limit-288 - [0:0] :limit-288 - [0:0]
:limit-289 - [0:0]
:limit-29 - [0:0] :limit-29 - [0:0]
:limit-290 - [0:0] :limit-290 - [0:0]
:limit-291 - [0:0] :limit-291 - [0:0]
:limit-292 - [0:0] :limit-292 - [0:0]
:limit-293 - [0:0]
:limit-294 - [0:0] :limit-294 - [0:0]
:limit-295 - [0:0] :limit-295 - [0:0]
:limit-296 - [0:0] :limit-296 - [0:0]
...@@ -393,19 +424,24 @@ ...@@ -393,19 +424,24 @@
:limit-3 - [0:0] :limit-3 - [0:0]
:limit-30 - [0:0] :limit-30 - [0:0]
:limit-300 - [0:0] :limit-300 - [0:0]
:limit-301 - [0:0]
:limit-302 - [0:0] :limit-302 - [0:0]
:limit-303 - [0:0] :limit-303 - [0:0]
:limit-304 - [0:0] :limit-304 - [0:0]
:limit-305 - [0:0]
:limit-306 - [0:0] :limit-306 - [0:0]
:limit-307 - [0:0] :limit-307 - [0:0]
:limit-308 - [0:0] :limit-308 - [0:0]
:limit-309 - [0:0] :limit-309 - [0:0]
:limit-31 - [0:0]
:limit-310 - [0:0] :limit-310 - [0:0]
:limit-311 - [0:0] :limit-311 - [0:0]
:limit-312 - [0:0] :limit-312 - [0:0]
:limit-313 - [0:0]
:limit-314 - [0:0] :limit-314 - [0:0]
:limit-315 - [0:0] :limit-315 - [0:0]
:limit-316 - [0:0] :limit-316 - [0:0]
:limit-317 - [0:0]
:limit-318 - [0:0] :limit-318 - [0:0]
:limit-319 - [0:0] :limit-319 - [0:0]
:limit-32 - [0:0] :limit-32 - [0:0]
...@@ -414,9 +450,11 @@ ...@@ -414,9 +450,11 @@
:limit-322 - [0:0] :limit-322 - [0:0]
:limit-323 - [0:0] :limit-323 - [0:0]
:limit-324 - [0:0] :limit-324 - [0:0]
:limit-325 - [0:0]
:limit-326 - [0:0] :limit-326 - [0:0]
:limit-327 - [0:0] :limit-327 - [0:0]
:limit-328 - [0:0] :limit-328 - [0:0]
:limit-329 - [0:0]
:limit-33 - [0:0] :limit-33 - [0:0]
:limit-330 - [0:0] :limit-330 - [0:0]
:limit-331 - [0:0] :limit-331 - [0:0]
...@@ -439,6 +477,7 @@ ...@@ -439,6 +477,7 @@
:limit-347 - [0:0] :limit-347 - [0:0]
:limit-348 - [0:0] :limit-348 - [0:0]
:limit-349 - [0:0] :limit-349 - [0:0]
:limit-35 - [0:0]
:limit-350 - [0:0] :limit-350 - [0:0]
:limit-351 - [0:0] :limit-351 - [0:0]
:limit-352 - [0:0] :limit-352 - [0:0]
...@@ -527,6 +566,7 @@ ...@@ -527,6 +566,7 @@
:limit-427 - [0:0] :limit-427 - [0:0]
:limit-428 - [0:0] :limit-428 - [0:0]
:limit-429 - [0:0] :limit-429 - [0:0]
:limit-43 - [0:0]
:limit-430 - [0:0] :limit-430 - [0:0]
:limit-431 - [0:0] :limit-431 - [0:0]
:limit-432 - [0:0] :limit-432 - [0:0]
...@@ -570,6 +610,7 @@ ...@@ -570,6 +610,7 @@
:limit-467 - [0:0] :limit-467 - [0:0]
:limit-468 - [0:0] :limit-468 - [0:0]
:limit-469 - [0:0] :limit-469 - [0:0]
:limit-47 - [0:0]
:limit-470 - [0:0] :limit-470 - [0:0]
:limit-471 - [0:0] :limit-471 - [0:0]
:limit-472 - [0:0] :limit-472 - [0:0]
...@@ -658,6 +699,7 @@ ...@@ -658,6 +699,7 @@
:limit-547 - [0:0] :limit-547 - [0:0]
:limit-548 - [0:0] :limit-548 - [0:0]
:limit-549 - [0:0] :limit-549 - [0:0]
:limit-55 - [0:0]
:limit-550 - [0:0] :limit-550 - [0:0]
:limit-551 - [0:0] :limit-551 - [0:0]
:limit-552 - [0:0] :limit-552 - [0:0]
...@@ -701,6 +743,7 @@ ...@@ -701,6 +743,7 @@
:limit-587 - [0:0] :limit-587 - [0:0]
:limit-588 - [0:0] :limit-588 - [0:0]
:limit-589 - [0:0] :limit-589 - [0:0]
:limit-59 - [0:0]
:limit-590 - [0:0] :limit-590 - [0:0]
:limit-591 - [0:0] :limit-591 - [0:0]
:limit-592 - [0:0] :limit-592 - [0:0]
...@@ -856,6 +899,7 @@ ...@@ -856,6 +899,7 @@
:limit-727 - [0:0] :limit-727 - [0:0]
:limit-728 - [0:0] :limit-728 - [0:0]
:limit-729 - [0:0] :limit-729 - [0:0]
:limit-73 - [0:0]
:limit-730 - [0:0] :limit-730 - [0:0]
:limit-731 - [0:0] :limit-731 - [0:0]
:limit-732 - [0:0] :limit-732 - [0:0]
...@@ -893,6 +937,7 @@ ...@@ -893,6 +937,7 @@
:limit-767 - [0:0] :limit-767 - [0:0]
:limit-768 - [0:0] :limit-768 - [0:0]
:limit-769 - [0:0] :limit-769 - [0:0]
:limit-77 - [0:0]
:limit-770 - [0:0] :limit-770 - [0:0]
:limit-772 - [0:0] :limit-772 - [0:0]
:limit-773 - [0:0] :limit-773 - [0:0]
...@@ -969,6 +1014,7 @@ ...@@ -969,6 +1014,7 @@
:limit-846 - [0:0] :limit-846 - [0:0]
:limit-848 - [0:0] :limit-848 - [0:0]
:limit-849 - [0:0] :limit-849 - [0:0]
:limit-85 - [0:0]
:limit-850 - [0:0] :limit-850 - [0:0]
:limit-851 - [0:0] :limit-851 - [0:0]
:limit-852 - [0:0] :limit-852 - [0:0]
...@@ -1006,6 +1052,7 @@ ...@@ -1006,6 +1052,7 @@
:limit-887 - [0:0] :limit-887 - [0:0]
:limit-888 - [0:0] :limit-888 - [0:0]
:limit-889 - [0:0] :limit-889 - [0:0]
:limit-89 - [0:0]
:limit-890 - [0:0] :limit-890 - [0:0]
:limit-891 - [0:0] :limit-891 - [0:0]
:limit-892 - [0:0] :limit-892 - [0:0]
...@@ -1082,6 +1129,7 @@ ...@@ -1082,6 +1129,7 @@
:limit-966 - [0:0] :limit-966 - [0:0]
:limit-968 - [0:0] :limit-968 - [0:0]
:limit-969 - [0:0] :limit-969 - [0:0]
:limit-97 - [0:0]
:limit-970 - [0:0] :limit-970 - [0:0]
:limit-971 - [0:0] :limit-971 - [0:0]
:limit-972 - [0:0] :limit-972 - [0:0]
...@@ -1633,7 +1681,15 @@ ...@@ -1633,7 +1681,15 @@
:logpass-40 - [0:0] :logpass-40 - [0:0]
:logpass-41 - [0:0] :logpass-41 - [0:0]
:logpass-42 - [0:0] :logpass-42 - [0:0]
:logpass-43 - [0:0]
:logpass-44 - [0:0]
:logpass-45 - [0:0]
:logpass-46 - [0:0]
:logpass-47 - [0:0]
:logpass-48 - [0:0]
:logpass-49 - [0:0]
:logpass-5 - [0:0] :logpass-5 - [0:0]
:logpass-50 - [0:0]
:logpass-6 - [0:0] :logpass-6 - [0:0]
:logpass-7 - [0:0] :logpass-7 - [0:0]
:logpass-8 - [0:0] :logpass-8 - [0:0]
...@@ -2069,7 +2125,7 @@ ...@@ -2069,7 +2125,7 @@
-A FORWARD -o eth1 -d 10.0.0.0/12 -j ACCEPT -A FORWARD -o eth1 -d 10.0.0.0/12 -j ACCEPT
-A FORWARD -o eth1 -d 10.0.0.0/12 -A FORWARD -o eth1 -d 10.0.0.0/12
-A FORWARD -o eth1 -d 10.0.0.0/12 -j logaccept-9 -A FORWARD -o eth1 -d 10.0.0.0/12 -j logaccept-9
-A FORWARD -o eth1 -d 10.0.0.0/12 -m limit --limit 1/second -j LOG -A FORWARD -o eth1 -d 10.0.0.0/12 -j logpass-9
-A FORWARD -o eth1 -d 10.0.0.0/12 -j address-0 -A FORWARD -o eth1 -d 10.0.0.0/12 -j address-0
-A FORWARD -o eth1 -d 10.0.0.0/12 -j address-1 -A FORWARD -o eth1 -d 10.0.0.0/12 -j address-1
-A FORWARD -o eth1 -d 10.0.0.0/12 -j address-2 -A FORWARD -o eth1 -d 10.0.0.0/12 -j address-2
...@@ -2081,7 +2137,7 @@ ...@@ -2081,7 +2137,7 @@
-A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1 -j ACCEPT -A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1 -j ACCEPT
-A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1 -A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1
-A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1 -j logaccept-12 -A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1 -j logaccept-12
-A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1 -m limit --limit 1/second -j LOG -A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1 -j logpass-11
-A FORWARD -o eth1 -d 10.0.0.0/12 -j address-8 -A FORWARD -o eth1 -d 10.0.0.0/12 -j address-8
-A FORWARD -o eth1 -d 10.0.0.0/12 -j address-9 -A FORWARD -o eth1 -d 10.0.0.0/12 -j address-9
-A FORWARD -o eth1 -d 10.0.0.0/12 -j address-10 -A FORWARD -o eth1 -d 10.0.0.0/12 -j address-10
...@@ -2096,8 +2152,8 @@ ...@@ -2096,8 +2152,8 @@
-A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.2 -A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.2
-A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1 -j logaccept-15 -A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1 -j logaccept-15
-A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.2 -j logaccept-15 -A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.2 -j logaccept-15
-A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1 -j logpass-11 -A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.1 -j logpass-13
-A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.2 -j logpass-11 -A FORWARD -o eth1 -d 10.0.0.0/12 -s 10.0.0.2 -j logpass-13
-A FORWARD -o eth1 -d 10.0.0.0/12 -j address-16 -A FORWARD -o eth1 -d 10.0.0.0/12 -j address-16
-A FORWARD -o eth1 -d 10.0.0.0/12 -j address-17 -A FORWARD -o eth1 -d 10.0.0.0/12 -j address-17
-A FORWARD -o eth1 -d 10.0.0.0/12 -j address-18 -A FORWARD -o eth1 -d 10.0.0.0/12 -j address-18
...@@ -2109,51 +2165,51 @@ ...@@ -2109,51 +2165,51 @@
-A FORWARD -i eth0 -j ACCEPT -A FORWARD -i eth0 -j ACCEPT
-A FORWARD -i eth0 -A FORWARD -i eth0
-A FORWARD -i eth0 -j logaccept-18 -A FORWARD -i eth0 -j logaccept-18
-A FORWARD -i eth0 -m limit --limit 1/second -j LOG -A FORWARD -i eth0 -j logpass-16
-A FORWARD -i eth0 -d 172.16.0.0/16 -j ACCEPT -A FORWARD -i eth0 -d 172.16.0.0/16 -j ACCEPT
-A FORWARD -i eth0 -d 172.16.0.0/16 -A FORWARD -i eth0 -d 172.16.0.0/16
-A FORWARD -i eth0 -d 172.16.0.0/16 -j logaccept-19 -A FORWARD -i eth0 -d 172.16.0.0/16 -j logaccept-19
-A FORWARD -i eth0 -d 172.16.0.0/16 -m limit --limit 1/second -j LOG -A FORWARD -i eth0 -d 172.16.0.0/16 -j logpass-17
-A FORWARD -i eth0 -d 172.16.0.0/16 -j ACCEPT -A FORWARD -i eth0 -d 172.16.0.0/16 -j ACCEPT
-A FORWARD -i eth0 -d 172.16.2.0/16 -j ACCEPT -A FORWARD -i eth0 -d 172.16.2.0/16 -j ACCEPT
-A FORWARD -i eth0 -d 172.16.0.0/16 -A FORWARD -i eth0 -d 172.16.0.0/16
-A FORWARD -i eth0 -d 172.16.2.0/16 -A FORWARD -i eth0 -d 172.16.2.0/16
-A FORWARD -i eth0 -d 172.16.0.0/16 -j logaccept-20 -A FORWARD -i eth0 -d 172.16.0.0/16 -j logaccept-20
-A FORWARD -i eth0 -d 172.16.2.0/16 -j logaccept-20 -A FORWARD -i eth0 -d 172.16.2.0/16 -j logaccept-20
-A FORWARD -i eth0 -d 172.16.0.0/16 -j logpass-14 -A FORWARD -i eth0 -d 172.16.0.0/16 -j logpass-18
-A FORWARD -i eth0 -d 172.16.2.0/16 -j logpass-14 -A FORWARD -i eth0 -d 172.16.2.0/16 -j logpass-18
-A FORWARD -i eth0 -s 10.0.0.1 -j ACCEPT -A FORWARD -i eth0 -s 10.0.0.1 -j ACCEPT
-A FORWARD -i eth0 -s 10.0.0.1 -A FORWARD -i eth0 -s 10.0.0.1
-A FORWARD -i eth0 -s 10.0.0.1 -j logaccept-21 -A FORWARD -i eth0 -s 10.0.0.1 -j logaccept-21
-A FORWARD -i eth0 -s 10.0.0.1 -m limit --limit 1/second -j LOG -A FORWARD -i eth0 -s 10.0.0.1 -j logpass-19
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j ACCEPT -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j ACCEPT
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logaccept-22 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logaccept-22
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -m limit --limit 1/second -j LOG -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logpass-20
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j ACCEPT -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j ACCEPT
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j ACCEPT -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j ACCEPT
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logaccept-23 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logaccept-23
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j logaccept-23 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j logaccept-23
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logpass-15 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logpass-21
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j logpass-15 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j logpass-21
-A FORWARD -i eth0 -s 10.0.0.1 -j ACCEPT -A FORWARD -i eth0 -s 10.0.0.1 -j ACCEPT
-A FORWARD -i eth0 -s 10.0.0.2 -j ACCEPT -A FORWARD -i eth0 -s 10.0.0.2 -j ACCEPT
-A FORWARD -i eth0 -s 10.0.0.1 -A FORWARD -i eth0 -s 10.0.0.1
-A FORWARD -i eth0 -s 10.0.0.2 -A FORWARD -i eth0 -s 10.0.0.2
-A FORWARD -i eth0 -s 10.0.0.1 -j logaccept-24 -A FORWARD -i eth0 -s 10.0.0.1 -j logaccept-24
-A FORWARD -i eth0 -s 10.0.0.2 -j logaccept-24 -A FORWARD -i eth0 -s 10.0.0.2 -j logaccept-24
-A FORWARD -i eth0 -s 10.0.0.1 -j logpass-16 -A FORWARD -i eth0 -s 10.0.0.1 -j logpass-22
-A FORWARD -i eth0 -s 10.0.0.2 -j logpass-16 -A FORWARD -i eth0 -s 10.0.0.2 -j logpass-22
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j ACCEPT -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j ACCEPT
-A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j ACCEPT -A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j ACCEPT
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16
-A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logaccept-25 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logaccept-25
-A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j logaccept-25 -A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j logaccept-25
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logpass-17 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logpass-23
-A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j logpass-17 -A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j logpass-23
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j ACCEPT -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j ACCEPT
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j ACCEPT -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j ACCEPT
-A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j ACCEPT -A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j ACCEPT
...@@ -2166,10 +2222,10 @@ ...@@ -2166,10 +2222,10 @@
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j logaccept-26 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j logaccept-26
-A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j logaccept-26 -A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j logaccept-26
-A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.2.0/16 -j logaccept-26 -A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.2.0/16 -j logaccept-26
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logpass-18 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.0.0/16 -j logpass-24
-A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j logpass-18 -A FORWARD -i eth0 -s 10.0.0.1 -d 172.16.2.0/16 -j logpass-24
-A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j logpass-18 -A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.0.0/16 -j logpass-24
-A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.2.0/16 -j logpass-18 -A FORWARD -i eth0 -s 10.0.0.2 -d 172.16.2.0/16 -j logpass-24
-A FORWARD -i eth0 -o eth1 -d 10.0.0.0/12 -j ACCEPT -A FORWARD -i eth0 -o eth1 -d 10.0.0.0/12 -j ACCEPT
-A FORWARD -i eth0 -o eth1 -d 10.0.0.0/12