svn commit: r201930 - head/etc
Hajimu UMEMOTO
ume at FreeBSD.org
Sat Jan 9 19:16:28 UTC 2010
Author: ume
Date: Sat Jan 9 19:16:27 2010
New Revision: 201930
URL: http://svn.freebsd.org/changeset/base/201930
Log:
The client type rule allows DHCP, implicitly. Since DHCPv6 uses
link-local address unlike with DHCP, we need one more rule to allow
the DHCPv6.
Reported by: David Horn <dhorn2000__at__gmail.com>
Modified:
head/etc/rc.firewall
Modified: head/etc/rc.firewall
==============================================================================
--- head/etc/rc.firewall Sat Jan 9 19:13:56 2010 (r201929)
+++ head/etc/rc.firewall Sat Jan 9 19:16:27 2010 (r201930)
@@ -220,6 +220,8 @@ case ${firewall_type} in
# Allow any link-local multicast traffic
${fwcmd} add pass all from fe80::/10 to ff02::/16
${fwcmd} add pass all from ${net6} to ff02::/16
+ # Allow DHCPv6
+ ${fwcmd} add pass udp from fe80::/10 to me6 546
fi
# Allow TCP through if setup succeeded
More information about the svn-src-all
mailing list