From 493321fdbbb14a64e411e2fa0f9a87b8698b7eec Mon Sep 17 00:00:00 2001
From: itojun <>
Date: Fri, 22 Oct 2004 00:59:09 +0000
Subject: [PATCH] default pf rule too restrictive for IPv6 (need to allow
 NS/NA).  deraadt ok

---
 src/etc/rc | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/etc/rc b/src/etc/rc
index 6c5a14b8..6b1317d3 100644
--- a/src/etc/rc
+++ b/src/etc/rc
@@ -1,4 +1,4 @@
-#	$OpenBSD: rc,v 1.257 2004/10/19 06:45:36 grange Exp $
+#	$OpenBSD: rc,v 1.258 2004/10/22 00:59:09 itojun Exp $
 
 # System startup script run by init on autoboot
 # or after single-user.
@@ -143,6 +143,8 @@ if [ "X${pf}" != X"NO" ]; then
 	RULES="$RULES\npass out proto { tcp, udp } from any to any port 53 keep state"
 	RULES="$RULES\npass out inet proto icmp all icmp-type echoreq keep state"
 	if ifconfig lo0 inet6 >/dev/null 2>&1; then
+		RULES="$RULES\npass out inet6 proto icmp6 all icmp6-type neighbrsol"
+		RULES="$RULES\npass in inet6 proto icmp6 all icmp6-type neighbradv"
 		RULES="$RULES\npass out inet6 proto icmp6 all icmp6-type routersol"
 		RULES="$RULES\npass in inet6 proto icmp6 all icmp6-type routeradv"
 	fi