From afad0cd7d12c266168acda2e3d48a1587d3fc07b Mon Sep 17 00:00:00 2001
From: ume <ume@FreeBSD.org>
Date: Wed, 5 Mar 2003 17:16:22 +0000
Subject: Latest IPFilter requires flushing rules for IPv6 separately from
 IPv4.

---
 etc/rc.d/ipfilter | 2 ++
 etc/rc.network    | 1 +
 2 files changed, 3 insertions(+)

diff --git a/etc/rc.d/ipfilter b/etc/rc.d/ipfilter
index 423717e..ab4bb1c 100755
--- a/etc/rc.d/ipfilter
+++ b/etc/rc.d/ipfilter
@@ -84,6 +84,7 @@ ipfilter_start()
 			${ipfilter_program:-/sbin/ipf} \
 			    -f "${ipfilter_rules}" ${ipfilter_flags}
 		fi
+		${ipfilter_program:-/sbin/ipf} -6 -Fa
 		if [ -r "${ipv6_ipfilter_rules}" ]; then
 			${ipfilter_program:-/sbin/ipf} -6 \
 			    -f "${ipv6_ipfilter_rules}" ${ipfilter_flags}
@@ -127,6 +128,7 @@ ipfilter_reload()
 			${ipfilter_program:-/sbin/ipf} -I \
 			    -f "${ipfilter_rules}" ${ipfilter_flags}
 		fi
+		${ipfilter_program:-/sbin/ipf} -I -6 -Fa
 		if [ -r "${ipv6_ipfilter_rules}" ]; then
 			${ipfilter_program:-/sbin/ipf} -I -6 \
 			    -f "${ipv6_ipfilter_rules}" ${ipfilter_flags}
diff --git a/etc/rc.network b/etc/rc.network
index d3d75d6..6ae5d5a 100644
--- a/etc/rc.network
+++ b/etc/rc.network
@@ -110,6 +110,7 @@ network_pass1() {
 					    -f "${ipfilter_rules}" \
 					    ${ipfilter_flags}
 				fi
+				${ipfilter_program:-/sbin/ipf} -6 -Fa
 				if [ -r "${ipv6_ipfilter_rules}" ]; then
 					${ipfilter_program:-/sbin/ipf} -6 \
 					    -f "${ipv6_ipfilter_rules}" \
-- 
cgit v1.1