From fec830db890e201caabc99507c2d1ba91d7603c9 Mon Sep 17 00:00:00 2001
From: Scott Ullrich <sullrich@pfsense.org>
Date: Wed, 23 Feb 2005 02:49:31 +0000
Subject: Add a pass out rule for each carp interface.  Use updated
 add_rule_to_anchor by passing a label too.

---
 packages/carp_rules.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'packages')

diff --git a/packages/carp_rules.php b/packages/carp_rules.php
index d3ace240..33256bed 100644
--- a/packages/carp_rules.php
+++ b/packages/carp_rules.php
@@ -36,10 +36,11 @@ foreach($config['installedpackages']['carp']['config'] as $carp) {
     $ip = $carp['ipaddress'];
     $int = find_ip_interface($ip);
     $carp_int = find_carp_interface($ip);
+    add_rule_to_anchor("firewallout", "pass out quick on {$carp_int} keep state", $carp_int)
     if($int <> false && $int <> $wan_interface) {
 	$ipnet = convert_ip_to_network_format($ip, $carp['netmask']);
 	$rule = "nat on {$int} inet from {$ipnet} to any -> ({$carp_int}) \n";
-	add_rule_to_anchor("natrules", $rule);
+	add_rule_to_anchor("natrules", $rule, $ip);
     }
 }
 
-- 
cgit v1.2.3