From 7175dc85b83c754a9d65c7891957778c70163f69 Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Wed, 17 Mar 2021 18:30:09 +0000
Subject: [PATCH] pf: Allow carp traffic on fsol-gw hosts

---
 roles/pf/files/pf.conf.gw_fsol | 1 +
 1 file changed, 1 insertion(+)

diff --git a/roles/pf/files/pf.conf.gw_fsol b/roles/pf/files/pf.conf.gw_fsol
index 0159482..98378d3 100644
--- a/roles/pf/files/pf.conf.gw_fsol
+++ b/roles/pf/files/pf.conf.gw_fsol
@@ -38,6 +38,7 @@ block in quick from any to self
 pass out quick on $int_if from $int_me to $int_net keep state (no-sync)
 
 # dmz network
+pass quick on $dmz_if proto carp
 pass in quick on $dmz_if inet from $dmz_net to any
 pass out quick on $dmz_if inet from any to $dmz_net