svn commit: r310707 - head/sbin/pfctl
Luiz Otavio O Souza
loos at FreeBSD.org
Wed Dec 28 16:16:50 UTC 2016
Author: loos
Date: Wed Dec 28 16:16:48 2016
New Revision: 310707
URL: https://svnweb.freebsd.org/changeset/base/310707
Log:
Fix the parsing of NPt binat rules.
In this specific case the src address can be set to any, which was not
accepted prior to this commit.
pfSense bug report: https://redmine.pfsense.org/issues/6985
Reviewed by: kp
Obtained from: pfSense
MFC after: 2 weeks
Sponsored by: Rubicon Communications, LLC (Netgate)
Modified:
head/sbin/pfctl/parse.y
Modified: head/sbin/pfctl/parse.y
==============================================================================
--- head/sbin/pfctl/parse.y Wed Dec 28 16:16:36 2016 (r310706)
+++ head/sbin/pfctl/parse.y Wed Dec 28 16:16:48 2016 (r310707)
@@ -4195,7 +4195,7 @@ natrule : nataction interface af proto
}
;
-binatrule : no BINAT natpasslog interface af proto FROM host toipspec tag
+binatrule : no BINAT natpasslog interface af proto FROM ipspec toipspec tag
tagged rtable redirection
{
struct pf_rule binat;
More information about the svn-src-head
mailing list