From mboxrd@z Thu Jan  1 00:00:00 1970
From: Stefan Schantl <stefan.schantl@ipfire.org>
To: development@lists.ipfire.org
Subject: [PATCH 2/3] initscripts/suricata: Move functions order and always use
 flush_fw_chain function
Date: Thu, 25 Apr 2019 19:31:47 +0200
Message-ID: <20190425173148.3868-2-stefan.schantl@ipfire.org>
In-Reply-To: <20190425173148.3868-1-stefan.schantl@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============0095091740238528787=="
List-Id: <development.lists.ipfire.org>

--===============0095091740238528787==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit

Signed-off-by: Stefan Schantl <stefan.schantl(a)ipfire.org>
---
 src/initscripts/system/suricata | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/src/initscripts/system/suricata b/src/initscripts/system/suricata
index ecd693054..233cded53 100644
--- a/src/initscripts/system/suricata
+++ b/src/initscripts/system/suricata
@@ -48,12 +48,18 @@ function get_cpu_count {
 	echo $CPUCOUNT
 }
 
+# Function to flush the firewall chain.
+function flush_fw_chain {
+	# Call iptables and flush the chain
+	iptables -F "$FW_CHAIN"
+}
+
 # Function to create the firewall rules to pass the traffic to suricata.
 function generate_fw_rules {
 	cpu_count=$(get_cpu_count)
 
 	# Flush the firewall chain.
-	iptables -F "$FW_CHAIN"
+	flush_fw_chain
 
 	# Loop through the array of network zones.
 	for zone in "${network_zones[@]}"; do
@@ -103,12 +109,6 @@ function generate_fw_rules {
 	iptables -A "${FW_CHAIN}" -j MARK --set-xmark "0x0/${MASK}"
 }
 
-# Function to flush the firewall chain.
-function flush_fw_chain {
-	# Call iptables and flush the chain
-	iptables -F "$FW_CHAIN"
-}
-
 case "$1" in
         start)
 		# Get amount of CPU cores.
-- 
2.20.1


--===============0095091740238528787==--