diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2017-11-09 03:42:55 +0100 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2018-06-06 19:18:43 +0200 |
commit | 30d45266bf38b209df33e4df1a116c60531ae3e5 (patch) | |
tree | af94699ae6d6a58edf84aabfff31bc82ff44e642 /src/parser_bison.y | |
parent | 57e4a095edc4dab19e14fc8d1bca3febde1ca86c (diff) |
expr: extend fwd statement to support address and family
Allow to forward packets through to explicit destination and interface.
nft add rule netdev x y fwd ip to 192.168.2.200 device eth0
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/parser_bison.y')
-rw-r--r-- | src/parser_bison.y | 17 |
1 files changed, 15 insertions, 2 deletions
diff --git a/src/parser_bison.y b/src/parser_bison.y index 5797ee76..c6491a3b 100644 --- a/src/parser_bison.y +++ b/src/parser_bison.y @@ -698,6 +698,8 @@ int nft_lex(void *, void *, void *); %destructor { expr_free($$); } rt_expr %type <val> rt_key +%type <val> fwd_key_proto + %type <expr> ct_expr %destructor { expr_free($$); } ct_expr %type <val> ct_key ct_dir ct_key_dir_optional ct_key_dir ct_key_proto_field @@ -2675,10 +2677,21 @@ dup_stmt : DUP TO stmt_expr } ; -fwd_stmt : FWD TO expr +fwd_key_proto : IP { $$ = NFPROTO_IPV4; } + | IP6 { $$ = NFPROTO_IPV6; } + ; + +fwd_stmt : FWD TO stmt_expr + { + $$ = fwd_stmt_alloc(&@$); + $$->fwd.dev = $3; + } + | FWD fwd_key_proto TO stmt_expr DEVICE stmt_expr { $$ = fwd_stmt_alloc(&@$); - $$->fwd.to = $3; + $$->fwd.family = $2; + $$->fwd.addr = $4; + $$->fwd.dev = $6; } ; |