diff options
| author | Scott Ullrich <sullrich@pfsense.org> | 2007-03-29 19:46:31 +0000 |
|---|---|---|
| committer | Scott Ullrich <sullrich@pfsense.org> | 2007-03-29 19:46:31 +0000 |
| commit | 83e442099b9a327096be457f836b63bbd9ab9a23 (patch) | |
| tree | 66f5a2f56a3039a46c0e2062fd18653a7e46ef1d /etc | |
| parent | 17271f41d3aee1b42add134d2e96fac6a6693e2a (diff) | |
| download | pfsense-83e442099b9a327096be457f836b63bbd9ab9a23.zip pfsense-83e442099b9a327096be457f836b63bbd9ab9a23.tar.gz | |
Remove debugging statement. Remove missed code from HEAD.
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/inc/filter.inc | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/etc/inc/filter.inc b/etc/inc/filter.inc index daef238..703d274 100644 --- a/etc/inc/filter.inc +++ b/etc/inc/filter.inc @@ -2649,12 +2649,13 @@ EOD; } $local_subnet = return_vpn_subnet($tunnel['local-subnet']); foreach($ifdescrs as $iface) { - echo "processing $iface\n"; foreach($ipsec_ips as $interface_ip) { if($iface == "wan") $interface_ip = find_interface_ip(get_real_wan_interface()); else $interface_ip = find_interface_ip(convert_friendly_interface_to_real_interface_name($iface)); + if($tunnel['interface'] <> $iface and strstr($tunnel['interface'], "carp") == false) + continue; $ipfrules .= "pass out quick on \${$iface} proto udp from {$interface_ip} to {$remote_gateway} port = 500 keep state label \"IPSEC: {$tunnel['descr']} - outbound isakmp\"\n"; $ipfrules .= "pass in quick on \${$iface} proto udp from {$remote_gateway} to $interface_ip port = 500 keep state label \"IPSEC: {$tunnel['descr']} - inbound isakmp\"\n"; if ($tunnel['p2']['protocol'] == 'esp') { |
