]> git.ipfire.org Git - people/dweismueller/ipfire-2.x.git/commit
projects / people / dweismueller / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 325a846) | patch
firewall: Fix SNAT rules that use a default network as source
authorMichael Tremer <michael.tremer@ipfire.org>
Thu, 22 Jan 2015 15:06:25 +0000 (16:06 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Thu, 22 Jan 2015 15:06:25 +0000 (16:06 +0100)
commit1b34f6cd64a7344220e69822175b26849caaa823
tree94457e570e566646efccecfc828137b70308e2aetree | snapshot
parent325a846a10e80385e12f08c72bfda19690c0aa5dcommit | diff
firewall: Fix SNAT rules that use a default network as source

In the POSTROUTING chain using -i intf0 does not work at all.
We now only use the -s parameter to figure out if the rule applied.
The filter chain still uses -i and -o to match patches not only
by the network address, but also by the incoming/outgoing interface.
config/firewall/rules.pl diff | blob | blame | history
Daniel's tree of IPFire 2.x.