upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-06-08 08:12:27 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/sys/netpfil
History
Kajetan Staszkiewicz f6f116cdbd pf: Make af-to work on outbound interface 
Currently af-to works only on inbound interface by creating a reversed
NAT state key which is used to match traffic returning on the outbound
interface.

Such limitation is not necessary. When an af-to state is created
for an outbound rule do not reverse the NAT state key, making it work
just like if it was created for a normal NAT rule. Depending on firewall
design it might be easier and more natural to use af-to on the outbound
interface.

Reviewed by:		kp
Approved by:		kp (mentor)
Sponsored by:		InnoGames GmbH
Differential Revision:	https://reviews.freebsd.org/D49122
2025-02-27 16:28:27 +01:00
..
ipfilter/netinet tcp: add TH_AE capabilities to ppp and pf 2024-11-29 10:04:31 +01:00
ipfw ipfw: add missing initializer for 'limit' table value 2025-02-10 10:58:23 +03:00
pf pf: Make af-to work on outbound interface 2025-02-27 16:28:27 +01:00