]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5946b39) | patch
evaluate: disallow ct original {s,d}ddr from maps
authorPablo Neira Ayuso <pablo@netfilter.org>
Fri, 15 Jan 2021 17:40:11 +0000 (18:40 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Fri, 15 Jan 2021 17:44:24 +0000 (18:44 +0100)
commit8b043938e77b1f421beccff595117d6e4ff8eecc
tree39f0caa782cea92ebb3377abeda93a4baf86479ftree
parent5946b3930b4e568b61065ac4e3cda6f9006e3833commit | diff
evaluate: disallow ct original {s,d}ddr from maps

test.nft:6:55-71: Error: specify either ip or ip6 for address matching
add rule ip mangle manout ct direction reply mark set ct original daddr map { $ext1_ip : 0x11, $ext2_ip : 0x12 }
                                                      ^^^^^^^^^^^^^^^^^

Closes: https://bugzilla.netfilter.org/show_bug.cgi?id=1489
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
src/evaluate.c diff | blob | blame | history
tests/py/ip/ct.t diff | blob | blame | history
tests/py/ip/ct.t.payload diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables