diff options
| author | Scott Ullrich <sullrich@pfsense.org> | 2008-01-17 03:15:23 +0000 |
|---|---|---|
| committer | Scott Ullrich <sullrich@pfsense.org> | 2008-01-17 03:15:23 +0000 |
| commit | dfd852d6efd56d79c0906da378b9f1fb4b143364 (patch) | |
| tree | d57ddf5f326cc485a8de00524e64235b23f8207a /etc | |
| parent | 4cf7e74ea246cf7d278fc96243429e1e23c16616 (diff) | |
| download | pfsense-dfd852d6efd56d79c0906da378b9f1fb4b143364.zip pfsense-dfd852d6efd56d79c0906da378b9f1fb4b143364.tar.gz | |
Move $rule portion out of the ng0 check that accidently slipped in. This
combined with my earlier change unbreaks traffic from the firewall itself
and also unbreaks nat redirect traffic.
Found-by: Billm
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/inc/filter.inc | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/etc/inc/filter.inc b/etc/inc/filter.inc index df37b3e..abe780c 100644 --- a/etc/inc/filter.inc +++ b/etc/inc/filter.inc @@ -3048,8 +3048,8 @@ function create_firewall_outgoing_rules_to_itself() { if ($config['interfaces'][$ifname]['ipaddr'] == "pppoe") { $int = " { " . filter_translate_type_to_real_interface($ifname) . " ng0 } "; /* first add a rule for the real interface, then for ng0 */ - $rule .="pass out quick on {$int} all keep state label \"let out anything from firewall host itself\"\n"; } + $rule .="pass out quick on {$int} all keep state label \"let out anything from firewall host itself\"\n"; } update_filter_reload_status("Setting up bridging items"); |
