From 87387963bc1a5d4fbb9785dbd3965b2d7de37ca6 Mon Sep 17 00:00:00 2001
From: Ad Schellevis <ad@opnsense.org>
Date: Thu, 4 Jun 2015 19:14:42 +0000
Subject: [PATCH] (ipfw) ignore traffic comming from localhost

---
 src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf b/src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf
index fce649305..1644ce4e2 100644
--- a/src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf
+++ b/src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf
@@ -65,6 +65,10 @@ add 140 pass layer2 mac-type 0x8863,0x8864
 # layer 2: block anything else non-IP(v4/v6)
 add 150 deny layer2 not mac-type ip,ipv6
 
+# allow traffic send from localhost
+add 200 skipto 60000 ipv6 from ::1 to any 
+add 201 skipto 60000 ipv4 from 127.0.0.1 to any
+
 #======================================================================================
 # Allow traffic to this hosts static ip's
 #======================================================================================