Project

General

Profile

Actions

Feature #2057

closed

Ability to disable the auto-added "Negate policy routing" for VPNs

Added by Chris Buechler about 13 years ago. Updated over 12 years ago.

Status:
Resolved
Priority:
High
Assignee:
Category:
Rules / NAT
Target version:
Start date:
12/20/2011
Due date:
% Done:

100%

Estimated time:
1.00 h
Plus Target Version:
Release Notes:

Description

The default of automatically negating policy routing for VPNs is sane by default, however there are some scenarios, like using gateway groups for failover of VPNs to another router, where that rule has to be disabled so you can policy route traffic. Need a checkbox under System>Advanced to disable adding that rule (rule under comment "negate VPN/PPTP/PPPoE networks for load balancer/gateway rules" in filter.inc).

Actions #1

Updated by Seth Mos about 13 years ago

  • Assignee set to Seth Mos
  • Estimated time set to 1.00 h
  • Affected Architecture All added
  • Affected Architecture deleted ()

Will add a knob on the advanced page as soon as possible. Not clear if you want to have this in 2.0.1

Actions #2

Updated by Seth Mos about 13 years ago

  • Status changed from New to Feedback
  • % Done changed from 0 to 100

Added a global disable knob on systems advanced firewall.
Tested on 2.0.1

Actions #3

Updated by Chris Buechler over 12 years ago

  • Status changed from Feedback to Resolved
  • Target version set to 2.1
Actions

Also available in: Atom PDF