From 9d81f904d1572ae1cf648fa8f7f1d180172a4b6f Mon Sep 17 00:00:00 2001
From: Renato Botelho <garga@FreeBSD.org>
Date: Thu, 25 Jul 2013 09:33:03 -0300
Subject: Fix #3106, parse 'not' rules right on destination for port forward +
 reflection proxy rules

---
 etc/inc/filter.inc | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/etc/inc/filter.inc b/etc/inc/filter.inc
index 805859a..b81d636 100644
--- a/etc/inc/filter.inc
+++ b/etc/inc/filter.inc
@@ -1039,11 +1039,12 @@ function filter_generate_reflection($rule, $nordr, $rdr_ifs, $srcaddr, $dstaddr_
 		}
 
 		$dstaddr = explode(" ", $dstaddr_port);
-		if($dstaddr[2])
-			$rflctintrange = $dstaddr[2];
-		else
+		if($dstaddr[2]) {
+			$rflctintrange = array_pop($dstaddr);
+			array_pop($dstaddr);
+		} else
 			return "";
-		$dstaddr = $dstaddr[0];
+		$dstaddr = implode(" ", $dstaddr);
 		if(empty($dstaddr) || trim($dstaddr) == "0.0.0.0" || strtolower(trim($dstaddr)) == "port")
 			return "";
 
-- 
cgit v1.1