diff options
| author | Seth Mos <seth.mos@xs4all.nl> | 2007-03-06 10:12:53 +0000 |
|---|---|---|
| committer | Seth Mos <seth.mos@xs4all.nl> | 2007-03-06 10:12:53 +0000 |
| commit | 9ba08fba64fc6e9e9e3dfd911eb1164c6ea21a2e (patch) | |
| tree | 2c68f8cbdc6adeb3d01308473b983d0b090e77cf /etc/inc/filter.inc | |
| parent | 68f346509f4542aa190b0237ab9759458b3ddbe3 (diff) | |
| download | pfsense-9ba08fba64fc6e9e9e3dfd911eb1164c6ea21a2e.zip pfsense-9ba08fba64fc6e9e9e3dfd911eb1164c6ea21a2e.tar.gz | |
Make the AON FTP logic a bit more verbose.
Add comments.
Diffstat (limited to 'etc/inc/filter.inc')
| -rw-r--r-- | etc/inc/filter.inc | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/etc/inc/filter.inc b/etc/inc/filter.inc index 29f7718..13e772e 100644 --- a/etc/inc/filter.inc +++ b/etc/inc/filter.inc @@ -746,7 +746,7 @@ function filter_nat_rules_generate() { $realif = convert_friendly_interface_to_real_interface_name(strtolower($ifname)); $int_ip = find_interface_ip($realif); if(isset($config['interfaces'][strtolower($ifname)]['disableftpproxy'])) { - log_error("FTP proxy disabled for interface {$ifname} - ignoring."); + log_error("Filter: FTP proxy disabled for interface {$ifname} - ignoring."); $interface_counter++; continue; } @@ -765,14 +765,17 @@ function filter_nat_rules_generate() { if(! empty($config['nat']['advancedoutbound']['rule'])) { foreach($config['nat']['advancedoutbound']['rule'] as $natnetwork) { if(ip_in_subnet($int_ip, $natnetwork['source']['network'])) { + /* if the interface address is matched in the AON Rule we need the ftp proxy */ $sourcenat++; } } } if($sourcenat == 0) { - log_error("No source NAT rule found for interface {$ifname} - not using the FTP proxy"); + log_error("Filter: No AON rule matched for interface {$ifname} - not using the FTP proxy"); $interface_counter++; continue; + } else { + log_error("Filter: AON Rule matched for interface {$ifname} - using FTP proxy"); } } $tmp_port = 8021 + $interface_counter; |
