Skip to content
This repository

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Browse code

use logging on the block all v6 rules if default is log

  • Loading branch information...
commit ac135e422b704e6e778b3cd9614da93c2349a851 1 parent e92e83d
Chris Buechler authored March 12, 2013

Showing 1 changed file with 7 additions and 6 deletions. Show diff stats Hide diff stats

  1. 13  etc/inc/filter.inc
13  etc/inc/filter.inc
@@ -2409,12 +2409,6 @@ function filter_rules_generate() {
2409 2409
 		$mt = microtime();
2410 2410
 		echo "filter_rules_generate() being called $mt\n";
2411 2411
 	}
2412  
-	
2413  
-	if(!isset($config['system']['ipv6allow'])) {
2414  
-		$ipfrules .= "# Block all IPv6\n";
2415  
-		$ipfrules .= "block in inet6 all label \"Block all IPv6\"\n";
2416  
-		$ipfrules .= "block out inet6 all label \"Block all IPv6\"\n";
2417  
-	}
2418 2412
 
2419 2413
 	$pptpdcfg = $config['pptpd'];
2420 2414
 
@@ -2433,6 +2427,13 @@ function filter_rules_generate() {
2433 2427
 		$log = "log";
2434 2428
 	else
2435 2429
 		$log = "";
  2430
+		
  2431
+	if(!isset($config['system']['ipv6allow'])) {
  2432
+		$ipfrules .= "# Block all IPv6\n";
  2433
+		$ipfrules .= "block in {$log} quick inet6 all label \"Block all IPv6\"\n";
  2434
+		$ipfrules .= "block out {$log} quick inet6 all label \"Block all IPv6\"\n";
  2435
+	}
  2436
+	
2436 2437
 	$ipfrules .= <<<EOD
2437 2438
 #---------------------------------------------------------------------------
2438 2439
 # default deny rules

0 notes on commit ac135e4

Please sign in to comment.
Something went wrong with that request. Please try again.