Only apply state tracking to pass rules

State tracking only applies to pass rules. This was broken with the refactor of 3e28d71.
Murik1990 · Jun 4, 2024 · 91628a2 · 91628a2
1 parent de9a354
commit 91628a2
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/src/etc/inc/filter.inc b/src/etc/inc/filter.inc
@@ -3574,8 +3574,9 @@ function filter_generate_user_rule($rule, & $extralabels = null) {
 	}
 
 	/* State Tracking Options */
-	$rule_tracks_state = true;
+	$rule_tracks_state = false;
 	if ($type == "pass") {
+		$rule_tracks_state = true;
 		if (empty($rule['statetype'])) {
 			// Default to 'keep state'; works with TCP, UDP, and ICMP.
 			$aline['flags'] .= "keep state ";