Commit 27f1a320 authored by Ad Schellevis's avatar Ad Schellevis Committed by Franco Fichtner

(CP) fix transparant mode, closes https://github.com/opnsense/core/issues/1391

(cherry picked from commit 81387849)
parent fb94841a
...@@ -5,10 +5,12 @@ ...@@ -5,10 +5,12 @@
{% for cp_zone in cp_interface_list %} {% for cp_zone in cp_interface_list %}
{% if cp_zone.obj.transparentHTTPProxy|default('0') == '1' %} {% if cp_zone.obj.transparentHTTPProxy|default('0') == '1' %}
# HTTP redirect {{ cp_zone.zone }} # HTTP redirect {{ cp_zone.zone }}
add 60005 skipto 65533 tcp from me to any dst-port 80 via {{ cp_zone.if }}
add 65532 fwd 127.0.0.1,{{ OPNsense.proxy.forward.port }} tcp from any to any dst-port 80 via {{ cp_zone.if }} add 65532 fwd 127.0.0.1,{{ OPNsense.proxy.forward.port }} tcp from any to any dst-port 80 via {{ cp_zone.if }}
{% endif %} {% endif %}
{% if cp_zone.obj.transparentHTTPSProxy|default('0') == '1' %} {% if cp_zone.obj.transparentHTTPSProxy|default('0') == '1' %}
# HTTPS redirect {{ cp_zone.zone }} # HTTPS redirect {{ cp_zone.zone }}
add 60005 skipto 65533 tcp from me to any dst-port 443 via {{ cp_zone.if }}
add 65532 fwd 127.0.0.1,{{ OPNsense.proxy.forward.sslbumpport }} tcp from any to any dst-port 443 via {{ cp_zone.if }} add 65532 fwd 127.0.0.1,{{ OPNsense.proxy.forward.sslbumpport }} tcp from any to any dst-port 443 via {{ cp_zone.if }}
{% endif %} {% endif %}
{% endfor %} {% endfor %}
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment