Skip to content
Permalink
Browse files

firewall: no VIPs for outbound NAT

  • Loading branch information...
fichtner committed Mar 7, 2018
1 parent ec819ca commit 7a823c56abd533c03c9709d030430eeb37735bd1
Showing with 2 additions and 2 deletions.
  1. +2 −2 src/opnsense/mvc/app/library/OPNsense/Firewall/SNatRule.php
@@ -79,11 +79,11 @@ private function parseNatRules()
) {
// When pool options are set, we may not specify our interface as a list
// (which doesn't require the same network validations as single items do).
$rule['target'] = "{$interf_settings['if']}";
$rule['target'] = "{$interf_settings['if']}:0";
} elseif (!empty($interf_settings['if'])) {
// Define target as list, to prevent "no IP address found for *Interface*" when pf can't
// find an address on the interface for the same protocol family.
$rule['target'] = "({$interf_settings['if']})";
$rule['target'] = "({$interf_settings['if']}:0)";
}
}
if (empty($rule['target'])) {

0 comments on commit 7a823c5

Please sign in to comment.
You can’t perform that action at this time.