Remove the old direct_networks table which is not used throughout the filter code. Instead we now create a negate_networks table which contains both vpns, directly connected networks (static routes) which should never be tagged for policy routing which breaks traffic. This fixes Ticket #1950 and needs to be MFC to 2.0 for 2.0.1
Related issues
Bug #1950: "Bypass firewall rules for traffic on the same interface" doesn't work as intended
Added by Seth Mos over 13 years ago
Remove the old direct_networks table which is not used throughout the filter code. Instead we now create a negate_networks table which contains both vpns, directly connected networks (static routes) which should never be tagged for policy routing which breaks traffic.
This fixes Ticket #1950 and needs to be MFC to 2.0 for 2.0.1