lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-17 01:54:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

Allow access to this hosts configured VIPs

Browse Source
This commit is contained in:
Fredrik Rönnvall 2019-02-09 09:21:02 +01:00
parent f768bf743a
commit f49a10ca33
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf
View File

@ -111,6 +111,19 @@ add {{loop.index + 1000}} skipto 60000 icmp from any to { 255.255.255.255 or {{
{% endif %}
{% endfor %}
#======================================================================================
# Allow traffic to this hosts VIPs
#======================================================================================
{% for item in virtualip.vip %}
{% if ':' not in item.subnet %}
add {{loop.index + 2000}} skipto 60000 udp from any to {{ item.subnet }} dst-port 53 keep-state
add {{loop.index + 2000}} skipto 60000 ip from any to { 255.255.255.255 or {{item.subnet}} } in
add {{loop.index + 2000}} skipto 60000 ip from { 255.255.255.255 or {{item.subnet}} } to any out
add {{loop.index + 2000}} skipto 60000 icmp from { 255.255.255.255 or {{item.subnet}} } to any out icmptypes 0
add {{loop.index + 2000}} skipto 60000 icmp from any to { 255.255.255.255 or {{item.subnet}} } in icmptypes 8
{% endif %}
{% endfor %}
{% for item in cp_interface_list %}
#===================================================================================
# zone {{item.zone}} ({{item.zoneid}}) / {{item.if}} configuration