firewall - CARP defaults. our default has always been to allow carp unconditional, which currently doesn't seem to make sense changing. However the "block carp from self" rule was translated incorrectly when changing our plugin structure and doesn't seem to be that useful at all (anymore).

This commit removes the rule, which originated from 986a3accd4 (https://forum.opnsense.org/index.php?topic=25019.msg120273#msg120273)
2026-03-20 03:16:12 +00:00 · 2021-10-06 17:28:03 +02:00 · 2021-10-06 17:28:03 +02:00 · 1b336f3ccc
commit 1b336f3ccc
parent 56e66ec809
1 changed files with 0 additions and 7 deletions
--- a/src/etc/inc/filter.lib.inc
+++ b/src/etc/inc/filter.lib.inc
@ -275,13 +275,6 @@ function filter_core_rules_system($fw, $defaults)
        );
    }
    // CARP defaults
-    $carp_disabled = empty($config['hasync']) && empty($config['virtualip']['vip']);
-    $fw->registerFilterRule(
-        1,
-        array('protocol' => 'carp', 'descr' => 'CARP defaults', '#ref' => 'system_hasync.php',
-            'from' => '(self)', 'direction' => 'in', 'disabled' => !$carp_disabled),
-        $defaults['block']
-    );
    $fw->registerFilterRule(
        1,
        array('protocol' => 'carp', 'direction' => 'any', 'descr' => 'CARP defaults', '#ref' => 'firewall_virtual_ip.php'),