diff options
| author | Michael Boelen <michael.boelen@cisofy.com> | 2021-04-15 09:33:02 +0300 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2021-04-15 09:33:02 +0300 |
| commit | dc0cb691e03d54098ffd93c30343a507e1a8ad41 (patch) | |
| tree | 790710abbbbb458e70f9df213998addb52e28801 | |
| parent | 21219c91eb08ad224853dd60d3b95e0b8d344141 (diff) | |
| parent | 7849965d980fb630890a6ff25e5cadcbfd1aa0ef (diff) | |
Merge pull request #1128 from nberlee/nft-empty-fix
nftables empy ruleset test fix by reorder --stateless
| -rw-r--r-- | include/tests_firewalls | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/include/tests_firewalls b/include/tests_firewalls index 06798ea7..44d6c441 100644 --- a/include/tests_firewalls +++ b/include/tests_firewalls @@ -506,7 +506,7 @@ Register --test-no FIRE-4540 --os Linux --preqs-met ${PREQS_MET} --weight L --network NO --root-only YES --category security --description "Check for empty nftables configuration" if [ ${SKIPTEST} -eq 0 ]; then # Check for empty ruleset - NFT_RULES_LENGTH=$(${NFTBINARY} list ruleset --stateless 2> /dev/null | ${EGREPBINARY} -v "table|chain|;$|}$|^$" | ${WCBINARY} -l) + NFT_RULES_LENGTH=$(${NFTBINARY} --stateless list ruleset 2> /dev/null | ${EGREPBINARY} -v "table|chain|;$|}$|^$" | ${WCBINARY} -l) if [ ${NFT_RULES_LENGTH} -le 3 ]; then FIREWALL_EMPTY_RULESET=1 LogText "Result: this firewall set has 3 rules or less and is considered to be empty" |