Skip to content

Commit

Permalink
Allow dhcp in iptables on dhcp listener interfaces
Browse files Browse the repository at this point in the history
  • Loading branch information
@fdurand
fdurand committed Jan 6, 2025
1 parent 4519b7c commit 2c8ba1a
Showing 1 changed file with 5 additions and 0 deletions.
5 changes: 5 additions & 0 deletions lib/pf/iptables.pm
View file
Original file line number Diff line number Diff line change
Expand Up @@ -58,6 +58,7 @@ use pf::config qw(
is_type_inline
@radius_ints
@dhcp_ints
@dhcplistener_ints
@dns_ints
netflow_enabled
);
Expand Down Expand Up @@ -358,6 +359,10 @@ sub generate_filter_if_src_to_chain {
my $dev = $dhcp_interface->tag("int");
$rules .= "-A INPUT --in-interface $dev --jump $FW_FILTER_INPUT_DHCP\n";
}
# 'dhcp listener' interfaces handling
foreach my $dhcp_interface ( @dhcplistener_ints ) {
$rules .= "-A INPUT --in-interface $dhcp_interface --jump $FW_FILTER_INPUT_DHCP\n";
}
# 'dns' interfaces handling
foreach my $dns_interface ( @dns_ints ) {
my $dev = $dns_interface->tag("int");
Expand Down

0 comments on commit 2c8ba1a

Please sign in to comment.