From 1f2553e461911eee3bd762d61effbef7d0b8cc45 Mon Sep 17 00:00:00 2001
From: ume <ume@FreeBSD.org>
Date: Fri, 18 Nov 2005 02:23:59 +0000
Subject: don't match packets other than IPv4 against divert rule. divert
 supports only IPv4.

Reported by:	SAITOU Toshihide <toshi__at__ruby.ocn.ne.jp>
Discussed with:	suz
MFC after:	1 day
---
 etc/rc.firewall | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'etc')

diff --git a/etc/rc.firewall b/etc/rc.firewall
index 05a1a6a..a288b3c 100644
--- a/etc/rc.firewall
+++ b/etc/rc.firewall
@@ -121,7 +121,7 @@ case ${firewall_type} in
 	case ${natd_enable} in
 	[Yy][Ee][Ss])
 		if [ -n "${natd_interface}" ]; then
-			${fwcmd} add 50 divert natd all from any to any via ${natd_interface}
+			${fwcmd} add 50 divert natd ip4 from any to any via ${natd_interface}
 		fi
 		;;
 	esac
-- 
cgit v1.1