diff options
| author | Ermal Luçi <eri@pfsense.org> | 2008-11-06 07:07:03 +0000 |
|---|---|---|
| committer | Ermal Luçi <eri@pfsense.org> | 2008-11-06 07:07:03 +0000 |
| commit | d78e99053451dde0cb961c59612f4d36a9e31bd7 (patch) | |
| tree | cffe58b92fe8a26b5be0ec4b2841f361a96df7dd /etc/inc/system.inc | |
| parent | e910b58d9bfeede8b03d7828e014143ab892f928 (diff) | |
| download | pfsense-d78e99053451dde0cb961c59612f4d36a9e31bd7.zip pfsense-d78e99053451dde0cb961c59612f4d36a9e31bd7.tar.gz | |
Filter on outgoing too to allow things like keep state on tcp sessions and reply-to to
'work' on ipsec!
Suggedsted-by: billm@
Diffstat (limited to 'etc/inc/system.inc')
| -rw-r--r-- | etc/inc/system.inc | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/etc/inc/system.inc b/etc/inc/system.inc index 866abdb..c3906e5 100644 --- a/etc/inc/system.inc +++ b/etc/inc/system.inc @@ -36,7 +36,7 @@ function activate_sysctls() { global $config, $g; exec("/sbin/sysctl net.enc.out.ipsec_bpf_mask=0x00000000"); - exec("/sbin/sysctl net.enc.out.ipsec_filter_mask=0x00000000"); + exec("/sbin/sysctl net.enc.out.ipsec_filter_mask=0x00000002"); exec("/sbin/sysctl net.enc.in.ipsec_bpf_mask=0x00000000"); exec("/sbin/sysctl net.enc.in.ipsec_filter_mask=0x00000001"); |
