diff options
| author | Scott Ullrich <sullrich@pfsense.org> | 2005-03-11 18:02:05 +0000 |
|---|---|---|
| committer | Scott Ullrich <sullrich@pfsense.org> | 2005-03-11 18:02:05 +0000 |
| commit | 74a03187903410d887e243cf210fbecb1d2d3a0d (patch) | |
| tree | 38b023645e516273ba837c7c533aaf69143164c6 | |
| parent | b099535f42b277d65b9b0cfa33b86228a4a85b3d (diff) | |
| download | pfsense-packages-74a03187903410d887e243cf210fbecb1d2d3a0d.tar.gz pfsense-packages-74a03187903410d887e243cf210fbecb1d2d3a0d.tar.bz2 pfsense-packages-74a03187903410d887e243cf210fbecb1d2d3a0d.zip | |
keep state on pfsync interface and carp traffic
| -rw-r--r-- | packages/carp_rules.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/packages/carp_rules.php b/packages/carp_rules.php index 67bb4ba9..00cde66d 100644 --- a/packages/carp_rules.php +++ b/packages/carp_rules.php @@ -46,11 +46,11 @@ foreach($config['installedpackages']['carp']['config'] as $carp) { add_rule_to_anchor("natrules", $rule, $ip); } } -add_rule_to_anchor("carp", "pass quick on pfsync0", "pfsync0" . "3"); +add_rule_to_anchor("carp", "pass quick on pfsync0 keep state", "pfsync0" . "3"); foreach($config['installedpackages']['carpsettings']['config'] as $carp) $carp_sync_int = convert_friendly_interface_to_real_interface_name($carp['pfsyncinterface']); if($carp_sync_int <> "") { - add_rule_to_anchor("carp", "pass quick on {$carp_sync_int}", $carp_sync_int . "3"); + add_rule_to_anchor("carp", "pass quick on {$carp_sync_int} keep state", $carp_sync_int . "3"); add_rule_to_anchor("carp", "pass quick on {$carp_sync_int} proto carp from {$carp_sync_int}:network to 224.0.0.18 keep state \(no-sync\)", $carp_sync_int . "2"); } |