--- loncom/lciptables	2009/06/11 00:15:27	1.1
+++ loncom/lciptables	2010/12/30 18:40:19	1.4
@@ -2,7 +2,7 @@
 #
 # The Learning Online Network with CAPA
 #
-# $Id: lciptables,v 1.1 2009/06/11 00:15:27 raeburn Exp $
+# $Id: lciptables,v 1.4 2010/12/30 18:40:19 raeburn Exp $
 #
 # Copyright Michigan State University Board of Trustees
 #
@@ -57,15 +57,15 @@ print "In lciptables\n" unless $noprint;
 
 # ----------------------------- Make sure this process is running from user=www
 my $wwwid=getpwnam('www');
-&DisableRoot;
-if ($wwwid!=$>) {
+
+if ($wwwid!=$<) {
     print("User ID mismatch.  This program must be run as user 'www'\n")
         unless $noprint;
     &Exit(1);
 }
 
 # ----------------------------------- Retrieve IP addreses for hosts in cluster
-&DisableRoot;
+
 
 my %iphost;
 if (@ARGV != 1) {
@@ -97,17 +97,17 @@ unless (&try_to_lock("/tmp/lock_lciptabl
 
 my $lond_port = &LONCAPA::Firewall::get_lond_port();
 
-($>,$<)=($wwwid,0);
+
 &EnableRoot();
 
-my $fw_chain = &LONCAPA::Firewall::get_fw_chain();
+my @fw_chains = &LONCAPA::Firewall::get_fw_chains();
 my $iptables = &LONCAPA::Firewall::get_pathto_iptables();
 my $firewall_result = 
-     &LONCAPA::Firewall::firewall_close_port($iptables,$fw_chain,$lond_port,[$lond_port]);
+     &LONCAPA::Firewall::firewall_close_port($iptables,\@fw_chains,$lond_port,\%iphost,[$lond_port]);
 if ($firewall_result) {
     print "$firewall_result\n";
 }
-my $firewall_result = &LONCAPA::Firewall::firewall_open_port($iptables,$fw_chain,$lond_port,\%iphost,[$lond_port]);
+my $firewall_result = &LONCAPA::Firewall::firewall_open_port($iptables,\@fw_chains,$lond_port,\%iphost,[$lond_port]);
 if ($firewall_result) {
     print "$firewall_result\n";
 }