Attachment #208031 for bug #227366

View | Details | Raw Unified | Return to bug 227366
Collapse All | Expand All




		fi
		;;
	esac
	case ${firewall_nat_enable} in
	[Yy][Ee][Ss])
		if [ -n "${firewall_nat_interface}" ]; then
			if echo "${firewall_nat_interface}" | \
				grep -q -E '^[0-9]+(\.[0-9]+){0,3}$'; then
				firewall_nat_flags="ip ${firewall_nat_interface} ${firewall_nat_flags}"
			else
				firewall_nat_flags="if ${firewall_nat_interface} ${firewall_nat_flags}"
			fi
			${fwcmd} nat 123 config log ${firewall_nat_flags}
			${fwcmd} add nat 123 ip4 from any to any via ${firewall_nat_interface}
		fi
		;;
	esac

	${fwcmd} add deny all from "table($BAD_ADDR_TBL)" to any via ${oif}
	if [ -n "$inet6" ]; then

Return to bug 227366

Lines 331-336 case ${firewall_type} in Link Here

(-)libexec/rc/rc.firewall (+14 lines)
331	fi	331	fi
332	;;	332	;;
333	esac	333	esac
		334	case ${firewall_nat_enable} in
		335	[Yy][Ee][Ss])
		336	if [ -n "${firewall_nat_interface}" ]; then
		337	if echo "${firewall_nat_interface}" \| \
		338	grep -q -E '^[0-9]+(\.[0-9]+){0,3}$'; then
		339	firewall_nat_flags="ip ${firewall_nat_interface} ${firewall_nat_flags}"
		340	else
		341	firewall_nat_flags="if ${firewall_nat_interface} ${firewall_nat_flags}"
		342	fi
		343	${fwcmd} nat 123 config log ${firewall_nat_flags}
		344	${fwcmd} add nat 123 ip4 from any to any via ${firewall_nat_interface}
		345	fi
		346	;;
		347	esac
334		348
335	${fwcmd} add deny all from "table($BAD_ADDR_TBL)" to any via ${oif}	349	${fwcmd} add deny all from "table($BAD_ADDR_TBL)" to any via ${oif}
336	if [ -n "$inet6" ]; then	350	if [ -n "$inet6" ]; then