From 9e13217d324f4dae8a4bc2dfe1183bf576a3af5e Mon Sep 17 00:00:00 2001 From: Franco Fichtner Date: Mon, 30 Sep 2024 10:18:16 +0200 Subject: [PATCH] Revert "pflog: log packet dropped by default rule with drop" This reverts commit 385d8a743d0a48f04a091c76df1b8b6a06fc3820. --- sys/netpfil/pf/if_pflog.c | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/sys/netpfil/pf/if_pflog.c b/sys/netpfil/pf/if_pflog.c index 01e0afa0a19..b143aae1434 100644 --- a/sys/netpfil/pf/if_pflog.c +++ b/sys/netpfil/pf/if_pflog.c @@ -230,9 +230,7 @@ pflog_packet(struct pfi_kkif *kif, struct mbuf *m, sa_family_t af, bzero(&hdr, sizeof(hdr)); hdr.length = PFLOG_REAL_HDRLEN; hdr.af = af; - /* Default rule does not pass packets dropped for other reasons. */ - hdr.action = (rm->nr == (u_int32_t)-1 && reason != PFRES_MATCH) ? - PF_DROP : rm->action; + hdr.action = rm->action; hdr.reason = reason; memcpy(hdr.ifname, kif->pfik_name, sizeof(hdr.ifname));