diff options
| author | Scott Ullrich <sullrich@pfsense.org> | 2005-03-10 19:40:59 +0000 |
|---|---|---|
| committer | Scott Ullrich <sullrich@pfsense.org> | 2005-03-10 19:40:59 +0000 |
| commit | 2bc7f1478bd2e7294ec8d5a130487d249baafc51 (patch) | |
| tree | 9a7bc2e648e184c2f26189b1d8250f91fa4495f2 | |
| parent | fd0ee66da56bfff6a2f77151cf98cf7fb367d738 (diff) | |
| download | pfsense-packages-2bc7f1478bd2e7294ec8d5a130487d249baafc51.tar.gz pfsense-packages-2bc7f1478bd2e7294ec8d5a130487d249baafc51.tar.bz2 pfsense-packages-2bc7f1478bd2e7294ec8d5a130487d249baafc51.zip | |
Pass pfsync traffic with carp traffic, too.
| -rw-r--r-- | packages/carp_rules.php | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/packages/carp_rules.php b/packages/carp_rules.php index 37c184b2..272b1150 100644 --- a/packages/carp_rules.php +++ b/packages/carp_rules.php @@ -40,7 +40,8 @@ foreach($config['installedpackages']['carp']['config'] as $carp) { $carp_int = find_carp_interface($ip); add_rule_to_anchor("carp", "pass out quick on {$carp_int} keep state", $carp_int . "1"); if($carp['synciface']) { - add_rule_to_anchor("carp", "pass on xl0 proto carp from {$carp['synciface']}:network to 224.0.0.18 keep state \(no-sync\)", $carp['synciface'] . "2"); + add_rule_to_anchor("carp", "pass quick on xl0 proto carp from {$carp['synciface']}:network to 224.0.0.18 keep state \(no-sync\)", $carp['synciface'] . "2"); + add_rule_to_anchor("carp", "pass quick on xl0 proto pfsync keep state", $carp['synciface'] . "3"); } if($int <> false and $int <> $wan_interface) { $ipnet = convert_ip_to_network_format($ip, $carp['netmask']); |