]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e6f21c8) | patch
tproxy: Drop artificial port printing restriction
authorPhil Sutter <phil@nwl.cc>
Thu, 2 Nov 2023 13:48:10 +0000 (14:48 +0100)
committerPhil Sutter <phil@nwl.cc>
Thu, 2 Nov 2023 17:22:15 +0000 (18:22 +0100)
commite4c9f9f7e0d1f83be18f6c4a418da503e9021b24
tree8bf45ce3aa7cf488694304fe405fc6a1c53bdcaetree
parente6f21c85f2cac9e7d5437b68de470da0e4180b60commit | diff
tproxy: Drop artificial port printing restriction

It does not make much sense to omit printing the port expression if it's
not a value expression: On one hand, input allows for more advanced
uses. On the other, if it is in-kernel, best nft can do is to try and
print it no matter what. Just ignoring ruleset elements can't be
correct.

Fixes: 2be1d52644cf7 ("src: Add tproxy support")
Closes: https://bugzilla.netfilter.org/show_bug.cgi?id=1721
Signed-off-by: Phil Sutter <phil@nwl.cc>
Reviewed-by: Pablo Neira Ayuso <pablo@netfilter.org>
src/statement.c diff | blob | blame | history
tests/py/inet/tproxy.t diff | blob | blame | history
tests/py/inet/tproxy.t.json diff | blob | blame | history
tests/py/inet/tproxy.t.payload diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables