From 2f56ac49ee5fed548216aaabdf098e185decddf7 Mon Sep 17 00:00:00 2001
From: Chris Buechler <cmb@pfsense.org>
Date: Wed, 7 Jan 2015 13:25:37 -0600
Subject: Don't hard code the target IP in auto-generated outbound NAT rules,
 use previous behavior of setting it to the interface IP.

---
 etc/inc/filter.inc | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'etc')

diff --git a/etc/inc/filter.inc b/etc/inc/filter.inc
index 8eb1f1f..33e899a 100644
--- a/etc/inc/filter.inc
+++ b/etc/inc/filter.inc
@@ -1515,7 +1515,7 @@ function filter_nat_rules_outbound_automatic($src) {
 		$natent['interface'] = $if;
 		$natent['source']['network'] = $src;
 		$natent['dstport'] = "500";
-		$natent['target'] = $ifcfg['ip'];
+		$natent['target'] = "";
 		$natent['destination']['any'] = true;
 		$natent['staticnatport'] = true;
 		$natent['descr'] = gettext('Auto created rule for ISAKMP');
@@ -1525,7 +1525,7 @@ function filter_nat_rules_outbound_automatic($src) {
 		$natent['interface'] = $if;
 		$natent['source']['network'] = $src;
 		$natent['sourceport'] = "";
-		$natent['target'] = $ifcfg['ip'];
+		$natent['target'] = "";
 		$natent['destination']['any'] = true;
 		$natent['natport'] = "";
 		$natent['descr'] = gettext('Auto created rule');
-- 
cgit v1.1