On Fri, Sep 07, 2018 at 12:23:05PM +0200, Klemens Nanni wrote:
> henning@ removed this functionality years ago, see the lo.4 diff:
>
> revision 1.27
> date: 2011/04/02 14:38:09; author: henning; state: Exp; lines: +2
> -37;
> rmeove the link1 hack, it is in the way, it is only half-baked and
> doesn't
> work as you think it does, and the same can easily be achieved using pf
> ok claudio dlg sthen theo
>
> Noted by claudio.
... and OK by me
> OK?
>
> Index: pfctl_parser.c
> ===================================================================
> RCS file: /cvs/src/sbin/pfctl/pfctl_parser.c,v
> retrieving revision 1.330
> diff -u -p -r1.330 pfctl_parser.c
> --- pfctl_parser.c 6 Sep 2018 15:07:33 -0000 1.330
> +++ pfctl_parser.c 6 Sep 2018 20:42:48 -0000
> @@ -1583,15 +1583,8 @@ ifa_lookup(const char *ifa_name, int fla
> sizeof(struct pf_addr));
> if (flags & PFI_AFLAG_NETWORK)
> set_ipmask(n, unmask(&p->addr.v.a.mask));
> - else {
> - if (n->af == AF_INET &&
> - p->ifa_flags & IFF_LOOPBACK &&
> - p->ifa_flags & IFF_LINK1)
> - memcpy(&n->addr.v.a.mask, &p->addr.v.a.mask,
> - sizeof(struct pf_addr));
> - else
> - set_ipmask(n, -1);
> - }
> + else
> + set_ipmask(n, -1);
> n->ifindex = p->ifindex;
>
> n->next = NULL;
>
--
:wq Claudio
