diff options
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/inc/filter.inc | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/etc/inc/filter.inc b/etc/inc/filter.inc index 48f8ba0..a143a31 100644 --- a/etc/inc/filter.inc +++ b/etc/inc/filter.inc @@ -1878,6 +1878,14 @@ EOD; pass out all keep state allow-opts label "let out anything from firewall host itself" EOD; + foreach ($FilterIflist as $ifdescr => $ifcfg) { + if(isset($ifcfg['virtual'])) + continue; + $gw = get_interface_gateway($ifdescr); + if (is_ipaddr($gw) && is_ipaddr($ifcfg['ip'])) + $ipfrules .= "pass out route-to ( {$ifcfg['if']} {$gw} ) from {$ifcfg['ip']} to any keep state allow-opts label \"let out anything from firewall host itself\"\n"; + } + /* add ipsec interfaces */ if(isset($config['ipsec']['enable']) || isset($config['ipsec']['mobileclients']['enable'])) |
