git.ipfire.org Git - thirdparty/iptables.git/commit

author	Laura Garcia Liebana <nevola@gmail.com>
	Wed, 16 Mar 2016 22:24:00 +0000 (23:24 +0100)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Thu, 17 Mar 2016 15:45:41 +0000 (16:45 +0100)
commit	66dffc87f02a5ca468dd8d8b0a5bee27ff67bb63
tree	e6c3a96981e94cb04c1b86d82b87cf676cb03fc2	tree \| snapshot
parent	aa158ca0fda65ae6e62ca76d0744def3a03160bb	commit \| diff

extensions: libipt_REJECT: Avoid to print the default reject with value in the translation

Avoid to print the reject with value in the translation when the value is the default.

Before this patch:

$ sudo iptables-translate -A FORWARD -p TCP --dport 22 -j REJECT
nft add rule ip filter FORWARD tcp dport 22 counter reject with icmp type port-unreachable

After this patch:

$ sudo iptables-translate -A FORWARD -p TCP --dport 22 -j REJECT
nft add rule ip filter FORWARD tcp dport 22 counter reject

Signed-off-by: Laura Garcia Liebana <nevola@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>