From bfafb1ec13d3b6c20e058c24a663179deb1ef57e Mon Sep 17 00:00:00 2001
From: Mike Belopuhov <mikeb@cvs.openbsd.org>
Date: Tue, 30 Aug 2011 00:43:58 +0000
Subject: One shot rules can be used in pf.conf by specifying a "once" filter
 option.

ok henning, mcbride
---
 sbin/pfctl/pfctl_parser.c | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'sbin/pfctl/pfctl_parser.c')

diff --git a/sbin/pfctl/pfctl_parser.c b/sbin/pfctl/pfctl_parser.c
index 4ad8c50e9e9..10dc9c94f5e 100644
--- a/sbin/pfctl/pfctl_parser.c
+++ b/sbin/pfctl/pfctl_parser.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: pfctl_parser.c,v 1.279 2011/07/27 00:26:10 mcbride Exp $ */
+/*	$OpenBSD: pfctl_parser.c,v 1.280 2011/08/30 00:43:57 mikeb Exp $ */
 
 /*
  * Copyright (c) 2001 Daniel Hartmeier
@@ -1019,6 +1019,8 @@ print_rule(struct pf_rule *r, const char *anchor_call, int verbose)
 		printf(" allow-opts");
 	if (r->label[0])
 		printf(" label \"%s\"", r->label);
+	if (r->rule_flag & PFRULE_ONCE)
+		printf(" once");
 	if (r->qname[0] && r->pqname[0])
 		printf(" queue(%s, %s)", r->qname, r->pqname);
 	else if (r->qname[0])
-- 
cgit v1.2.3