diff options
author | Renato Botelho <garga@FreeBSD.org> | 2014-03-03 15:15:53 -0300 |
---|---|---|
committer | Renato Botelho <garga@FreeBSD.org> | 2014-03-03 15:15:53 -0300 |
commit | 6bb99c3fe0e5510c8c1962f082ef30bf0ab84a81 (patch) | |
tree | 03231020aa5ae1b121597400d7986fb2341d6dd7 /usr | |
parent | 2ccaa575593b79d43680214cd57307b9c7f65936 (diff) | |
download | pfsense-6bb99c3fe0e5510c8c1962f082ef30bf0ab84a81.zip pfsense-6bb99c3fe0e5510c8c1962f082ef30bf0ab84a81.tar.gz |
Validate if src OR dst have IP address set when protocol is IPv4+v6. Fixes #3499
Diffstat (limited to 'usr')
-rwxr-xr-x | usr/local/www/firewall_rules_edit.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/usr/local/www/firewall_rules_edit.php b/usr/local/www/firewall_rules_edit.php index ad4077e..033770b 100755 --- a/usr/local/www/firewall_rules_edit.php +++ b/usr/local/www/firewall_rules_edit.php @@ -420,11 +420,11 @@ if ($_POST) { $input_errors[] = gettext("You can not use IPv6 addresses in IPv4 rules."); if((is_ipaddrv4($_POST['src']) || is_ipaddrv4($_POST['dst'])) && ($_POST['ipprotocol'] == "inet6")) $input_errors[] = gettext("You can not use IPv4 addresses in IPv6 rules."); - if((is_ipaddr($_POST['src']) || is_ipaddr($_POST['dst'])) && ($_POST['ipprotocol'] == "inet46")) - $input_errors[] = gettext("You can not use a IPv4 or IPv6 address in combined IPv4 + IPv6 rules."); - } + if((is_ipaddr($_POST['src']) || is_ipaddr($_POST['dst'])) && ($_POST['ipprotocol'] == "inet46")) + $input_errors[] = gettext("You can not use a IPv4 or IPv6 address in combined IPv4 + IPv6 rules."); + if ($_POST['srcbeginport'] > $_POST['srcendport']) { /* swap */ $tmp = $_POST['srcendport']; |