diff options
| author | Ermal <eri@pfsense.org> | 2012-12-13 20:56:21 +0000 |
|---|---|---|
| committer | Ermal <eri@pfsense.org> | 2012-12-13 20:56:21 +0000 |
| commit | 9a62d88fd38499861b5dc128c24bab14600b1a4e (patch) | |
| tree | 6396ab01cbb94760393dbb0042f874bf11bf8698 /etc | |
| parent | d5063ffd6f9c714ff7140e2e87a6ac75019e9fbf (diff) | |
| download | pfsense-9a62d88fd38499861b5dc128c24bab14600b1a4e.zip pfsense-9a62d88fd38499861b5dc128c24bab14600b1a4e.tar.gz | |
Remove useless rule and reorder the static rule numbers
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/inc/captiveportal.inc | 10 |
1 files changed, 4 insertions, 6 deletions
diff --git a/etc/inc/captiveportal.inc b/etc/inc/captiveportal.inc index 285bcaa..62f279f 100644 --- a/etc/inc/captiveportal.inc +++ b/etc/inc/captiveportal.inc @@ -581,19 +581,17 @@ EOD; if (isset($cpcfg['httpslogin'])) { $listenporthttps = $listenporthttp + 1; - $cprules .= "add 65530 set 1 fwd 127.0.0.1,{$listenporthttps} tcp from any to any dst-port 443 in\n"; + $cprules .= "add 65531 set 1 fwd 127.0.0.1,{$listenporthttps} tcp from any to any dst-port 443 in\n"; } $cprules .= <<<EOD # redirect non-authenticated clients to captive portal -add 65531 set 1 fwd 127.0.0.1,{$listenporthttp} tcp from any to any dst-port 80 in +add 65532 set 1 fwd 127.0.0.1,{$listenporthttp} tcp from any to any dst-port 80 in # let the responses from the captive portal web server back out -add 65532 set 1 pass tcp from any to any out +add 65533 set 1 pass tcp from any to any out # block everything else -add 65533 set 1 deny all from any to any -# pass everything else on layer2 -add 65534 set 1 pass all from any to any layer2 +add 65534 set 1 deny all from any to any EOD; |
