diff options
author | Florian Westphal <fw@strlen.de> | 2016-12-11 18:02:34 +0100 |
---|---|---|
committer | Florian Westphal <fw@strlen.de> | 2017-08-22 23:51:02 +0200 |
commit | 0c0b2452bc3c96cf3db09eb8cbf62778a2fd8f6c (patch) | |
tree | 8ab752666dda2f50c396501f1fb95ff43b90eac1 /src/parser_bison.y | |
parent | d74eed8c9649e9278b69f2cd0fd92f71e3e19cfb (diff) |
src: add tcp options set support
This adds support for tcp mss mangling:
nft add rule filter input tcp option maxseg size 1200
Its also possible to change other tcp option fields, but
maxseg is one of the more useful ones to change.
Signed-off-by: Florian Westphal <fw@strlen.de>
Acked-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/parser_bison.y')
-rw-r--r-- | src/parser_bison.y | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/src/parser_bison.y b/src/parser_bison.y index 783b72f5..7898ea3f 100644 --- a/src/parser_bison.y +++ b/src/parser_bison.y @@ -3209,7 +3209,10 @@ ct_stmt : CT ct_key SET expr payload_stmt : payload_expr SET expr { - $$ = payload_stmt_alloc(&@$, $1, $3); + if ($1->ops->type == EXPR_EXTHDR) + $$ = exthdr_stmt_alloc(&@$, $1, $3); + else + $$ = payload_stmt_alloc(&@$, $1, $3); } ; |