(ipfw) skip enc0 device when processing captiveportal rules, found issue when...

(ipfw) skip enc0 device when processing captiveportal rules, found issue when analyzing https://github.com/opnsense/core/issues/369 (cherry picked from commit e03a4ce7)

(ipfw) skip enc0 device when processing captiveportal rules, found issue when...
(ipfw) skip enc0 device when processing captiveportal rules, found issue when analyzing https://github.com/opnsense/core/issues/369 (cherry picked from commit e03a4ce7)
21b11319 · Ad Schellevis · Franco Fichtner · c6a43661 · 21b11319
Commit 21b11319 authored Oct 12, 2015 by Ad Schellevis Committed by Franco Fichtner Oct 13, 2015
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 0 deletions

ipfw.conf src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf +2 -0

No files found.
--- a/src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf
+++ b/src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf
@@ -115,6 +115,8 @@ add {{5000 + item.zoneid|int }} allow ip from any to any dst-port 80 via {{item.
 {% for item in no_cp_interface_list %}
 add {{6001 + loop.index }} skipto 60000 all from any to any via {{item.if}}
 {% endfor %}
+# skip ipsec tunnel device from captive portal rules
+add 6199 skipto 60000 all from any to any via enc0
 # let the responses from the captive portal web server back out
 add 6200 pass tcp from any to any out
 # block everything else (not mentioned before)