FreeBSD Bugzilla – Attachment 208031 Details for
Bug 227366
It does not take into account the NAT configuration via firewall_nat_enable in the configuration SIMPLE (/etc/rc.firewall).
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
rc.firewall: Add support for in-kernel NAT to simple firewall
rc.firewall.patch (text/plain), 811 bytes, created by
Jose Luis Duran
on 2019-10-02 13:27:38 UTC
(
hide
)
Description:
rc.firewall: Add support for in-kernel NAT to simple firewall
Filename:
MIME Type:
Creator:
Jose Luis Duran
Created:
2019-10-02 13:27:38 UTC
Size:
811 bytes
patch
obsolete
>diff --git libexec/rc/rc.firewall libexec/rc/rc.firewall >index 8389d76..140e2e5 100644 >--- libexec/rc/rc.firewall >+++ libexec/rc/rc.firewall >@@ -331,6 +331,20 @@ case ${firewall_type} in > fi > ;; > esac >+ case ${firewall_nat_enable} in >+ [Yy][Ee][Ss]) >+ if [ -n "${firewall_nat_interface}" ]; then >+ if echo "${firewall_nat_interface}" | \ >+ grep -q -E '^[0-9]+(\.[0-9]+){0,3}$'; then >+ firewall_nat_flags="ip ${firewall_nat_interface} ${firewall_nat_flags}" >+ else >+ firewall_nat_flags="if ${firewall_nat_interface} ${firewall_nat_flags}" >+ fi >+ ${fwcmd} nat 123 config log ${firewall_nat_flags} >+ ${fwcmd} add nat 123 ip4 from any to any via ${firewall_nat_interface} >+ fi >+ ;; >+ esac > > ${fwcmd} add deny all from "table($BAD_ADDR_TBL)" to any via ${oif} > if [ -n "$inet6" ]; then
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 227366
: 208031