lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-20 03:16:12 +00:00
Code Issues Packages Projects Releases Wiki Activity

(ipfw) skip enc0 device when processing captiveportal rules, found issue when analyzing https://github.com/opnsense/core/issues/369

Browse Source
This commit is contained in:
Ad Schellevis 2015-10-12 11:35:33 +00:00
parent 5f65d5419f
commit e03a4ce79d
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf
View File

@ -115,6 +115,8 @@ add {{5000 + item.zoneid|int }} allow ip from any to any dst-port 80 via {{item.
{% for item in no_cp_interface_list %}
add {{6001 + loop.index }} skipto 60000 all from any to any via {{item.if}}
{% endfor %}
# skip ipsec tunnel device from captive portal rules
add 6199 skipto 60000 all from any to any via enc0
# let the responses from the captive portal web server back out
add 6200 pass tcp from any to any out
# block everything else (not mentioned before)