diff options
| author | Ermal <eri@pfsense.org> | 2011-07-28 19:35:03 +0000 |
|---|---|---|
| committer | Ermal <eri@pfsense.org> | 2011-07-28 19:35:13 +0000 |
| commit | e151744e908bda123e300fc7bd6e41552b347597 (patch) | |
| tree | cd545693b7a16d1fbdfa1567df108010124cb08f | |
| parent | 778772383bc643d80f27d3e90691e467bab9e681 (diff) | |
| download | pfsense-e151744e908bda123e300fc7bd6e41552b347597.zip pfsense-e151744e908bda123e300fc7bd6e41552b347597.tar.gz | |
Just break states based on the remote host ip and not with localip. The later might be the same as address used by other services and might interrupt them
| -rwxr-xr-x | usr/local/sbin/vpn-linkdown | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/usr/local/sbin/vpn-linkdown b/usr/local/sbin/vpn-linkdown index ac9ea2a..4b6cff7 100755 --- a/usr/local/sbin/vpn-linkdown +++ b/usr/local/sbin/vpn-linkdown @@ -2,4 +2,8 @@ # record logout /usr/bin/logger -p local3.info "logout,$1,$4,$5" -/sbin/pfctl -b $3/32 -b $4/32 +/sbin/pfctl -b 0.0.0.0/32 -b $4/32 +/sbin/pfctl -k $4/32 +/sbin/pfctl -k 0.0.0.0/32 $4/32 +/sbin/pfctl -K $4/32 +/sbin/pfctl -K 0.0.0.0/32 -K $4/32 |
