src: add nat persistent and random options

This patch adds more configuration options to the nat expression. The syntax is as follow: % nft add rule nat postrouting <snat|dnat> <nat_arguments> [flags] Flags are: random, persistent, random-fully. Example: % nft add rule nat postrouting dnat 1.1.1.1 random,persistent A requirement is to cache some [recent] copies of kernel headers. Signed-off-by: Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Arturo Borrero <arturo.borrero.glez@gmail.com> 2014-10-03 14:46:41 +0200
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2014-10-09 14:09:28 +0200
commit: fc53d1b6b93d9ca194334c43931753e19bcb127b (patch)
tree: 170218b0e392d7e123748d15396739ca05bb74e6 /src/scanner.l
parent: 5fdd0b6a0600e66f9ff6d9a1d6b749aa68a3ba99 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/src/scanner.l b/src/scanner.l
index 9f054fdf..0955c4af 100644
--- a/src/scanner.l
+++ b/src/scanner.l
@@ -319,6 +319,9 @@ addrstring	({macaddr}|{ip4addr}|{ip6addr})
 
 "snat"			{ return SNAT; }
 "dnat"			{ return DNAT; }
+"random"		{ return RANDOM; }
+"random-fully"		{ return RANDOM_FULLY; }
+"persistent"		{ return PERSISTENT; }
 
 "ll"			{ return LL_HDR; }
 "nh"			{ return NETWORK_HDR; }
author	Arturo Borrero <arturo.borrero.glez@gmail.com>	2014-10-03 14:46:41 +0200
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2014-10-09 14:09:28 +0200
commit	fc53d1b6b93d9ca194334c43931753e19bcb127b (patch)
tree	170218b0e392d7e123748d15396739ca05bb74e6 /src/scanner.l
parent	5fdd0b6a0600e66f9ff6d9a1d6b749aa68a3ba99 (diff)