firewall: Fix initialization when RED has not been brought up yet

2026-04-09 18:45:54 +02:00 · 2014-08-21 16:12:43 +02:00
parent 6de2306a6a
commit e7204c2d95
1 changed files with 4 additions and 2 deletions
--- a/src/initscripts/init.d/firewall
+++ b/src/initscripts/init.d/firewall
@@ -369,8 +369,10 @@ iptables_red_down() {
 	# while the wan interface is down - this is required to
 	# circumvent udp related NAT issues
 	# http://forum.ipfire.org/index.php?topic=11127.0
-	iptables -F REDFORWARD
-	iptables -A REDFORWARD -o $IFACE -j DROP
+	if [ -n "${IFACE}" ]; then
+		iptables -F REDFORWARD
+		iptables -A REDFORWARD -o "${IFACE}" -j DROP
+	fi

 	# Reload all rules.
 	/usr/local/bin/firewallctrl