#!/bin/sh
# Functions for ipchains for tree-firewall
# License: GNU GPL
# (c) 2002 Olgierd Pieczul <wojrus@pld.org.pl>

# $Revision: 1.8 $, $Date: 2002/06/15 15:24:40 $

add_rule() {
	if $debug; then
		echo ipchains -A $1 $2
		ipchains -A $1 $2
	else
		ret=0
		ipchains -A $1 $2 >/dev/null 2>/dev/null || ret=1
		return $ret
	fi
}	

addfirst_rule() {
	if $debug; then
		echo ipchains -I $1 $2
		ipchains -I $1 $2
	else
		ret=0
		ipchains -I $1 $2 >/dev/null 2>/dev/null || ret=1
		return $ret
	fi
}

del_rule() {
    if $debug; then
    	echo ipchains -D $1 $2
	    ipchains -D $1 $2
	else
		ret=0
		ipchains -D $1 $2 >/dev/null 2>/dev/null || ret=1
		return $ret
	fi
}
						
policy_rule() {
	if $debug; then
		echo ipchains -P $1 $2
		ipchains -P $1 $2
	else
		ret=0
		ipchains -P $1 $2 >/dev/null 2>/dev/null || ret=1
		return $ret
	fi
}

tables() {
    action=$1; set=$2; ret=0
	if [ "$action" = "policy" ]; then
		dir="policies"
	else
		dir="sets"
	fi
	chains $action $root/$dir/$set || ret=1
	return $ret
}

