Increase compatibility to old firewall by initializing protocol of rules and redirect...

[project/firewall3.git] / ipsets.c

diff --git a/ipsets.c b/ipsets.c
index 74706ff..af03ddc 100644 (file)
--- a/ipsets.c
+++ b/ipsets.c
@@ -366,8 +366,9 @@ fw3_create_ipsets(struct fw3_state *state)
                return;
 
        list_for_each_entry(ipset, &state->ipsets, list)
-               if (!fw3_lookup_ipset(state, ipset->name, true))
-                       create_ipset(ipset, state);
+               if (!hasbit(ipset->flags[0], FW3_FLAG_DELETED))
+                       if (!fw3_lookup_ipset(state, ipset->name, true))
+                               create_ipset(ipset, state);
 
        fw3_pr("quit\n");
 }
@@ -379,9 +380,9 @@ fw3_destroy_ipsets(struct fw3_state *state, enum fw3_family family)
 
        list_for_each_entry_safe(s, tmp, &state->running_ipsets, running_list)
        {
-               delbit(s->running_flags, family);
+               del(s->flags, family, family);
 
-               if (fw3_no_family(s->running_flags))
+               if (fw3_no_family(s->flags[family == FW3_FAMILY_V6]))
                {
                        info(" * Deleting ipset %s", s->name);