diff options
author | jim-p <jimp@pfsense.org> | 2011-03-03 15:39:30 -0500 |
---|---|---|
committer | jim-p <jimp@pfsense.org> | 2011-03-03 15:40:08 -0500 |
commit | 06b3df52262764723289a3ac65c3a7c05a8a8f4c (patch) | |
tree | 0055e3f251c946c60979d98a34d400866e5d778f /etc | |
parent | 4f4e85dfb883b9d6ca7bdf8389b7eaeef126abec (diff) | |
download | pfsense-06b3df52262764723289a3ac65c3a7c05a8a8f4c.zip pfsense-06b3df52262764723289a3ac65c3a7c05a8a8f4c.tar.gz |
Make this lowercase before checking, or people who ended up with TCP or UDP in their config might end up with rules that have no port specified, leaving them a bit more open than expected.
Diffstat (limited to 'etc')
-rw-r--r-- | etc/inc/filter.inc | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/etc/inc/filter.inc b/etc/inc/filter.inc index e0ddd9a..20946dc 100644 --- a/etc/inc/filter.inc +++ b/etc/inc/filter.inc @@ -1631,6 +1631,7 @@ function filter_generate_address(& $rule, $target = "source", $isnat = false) { $src = " {$not} {$expsrc}"; } + $rule['protocol'] = strtolower($rule['protocol']); if(in_array($rule['protocol'], array("tcp","udp","tcp/udp"))) { if($rule[$target]['port']) { $srcport = explode("-", $rule[$target]['port']); |