* udptunnel-reconf default script pauses for 10s between restarts.
* udptunnel-reconf inittab entries default to having </dev/null.
* udptunnel-reconf understands forbid_remote set to `-'.
+ * forbid_remote is a per-tunnel option.
* www-cgi passes HTTP_COOKIE header.
--
# along with userv-utils; if not, write to the Free Software
# Foundation, 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
#
-# $Id: udptunnel-reconf.pl,v 1.3 2001/09/26 00:12:14 ian Exp $
+# $Id: udptunnel-reconf.pl,v 1.4 2001/09/26 00:18:56 ian Exp $
use Socket;
return ($iaddr, $mask);
}
-$forbid_remote= var_global('forbid_remote');
-@forbid_remote= ();
-if ($forbid_remote ne '-') {
- foreach $r (split /[, \t]+/, $forbid_remote) {
- push @forbid_remote, [ parse_addr_mask($r) ];
- }
-}
-
sub ipif_permit ($$$$) {
my ($group,$local,$net,$why) = @_;
my ($pmask,$piaddr,$fmask,$fiaddr,@lgroup,$lgid);
}
foreach $site (@actives, @passives) {
+ $forbid_remote= var_site('forbid_remote');
+ @forbid_remote= ();
+ if ($forbid_remote ne '-') {
+ foreach $r (split /[, \t]+/, $forbid_remote) {
+ push @forbid_remote, [ parse_addr_mask($r) ];
+ }
+ }
+
$tlend= var_site('lend')."/32";
$tlgroup= var_site('lgroup');
if ($tlend ne $glend || $tlgroup ne $glgroup) {