From ed2fba4db651806f49d0c5bb7c42955ff8d014bb Mon Sep 17 00:00:00 2001
From: Scott Ullrich <sullrich@pfsense.org>
Date: Thu, 28 Aug 2008 22:43:16 +0000
Subject: Do not rdr tftp to tftp-proxy for local vpns for both tcp and udp.
 This fixes the long standing bug of my voip phones being broken.

---
 etc/inc/filter.inc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'etc/inc')

diff --git a/etc/inc/filter.inc b/etc/inc/filter.inc
index 8e627de..bd30943 100644
--- a/etc/inc/filter.inc
+++ b/etc/inc/filter.inc
@@ -874,7 +874,7 @@ function filter_nat_rules_generate()
 		   they are most likely on a bridged interface */
 		if($int_ip and $vpns_list) {
 			$natrules .= "no rdr on $realif proto tcp from any to <vpns> port 21\n";
-			$natrules .= "no rdr on $realif proto udp from any to <vpns> port tftp\n";
+			$natrules .= "no rdr on $realif proto {tcp,udp} from any to <vpns> port tftp\n";
 			if($onetoone_list) {
 				$natrules .= "no rdr on $realif proto tcp from <onetoonelist> to any port 21\n";
 				$natrules .= "no rdr on $realif proto udp from <onetoonelist> to any port tftp\n";
-- 
cgit v1.1