iptables - iptables tree

diff options

author	Pablo Neira Ayuso <pablo@netfilter.org>	2017-03-08 14:16:09 +0100
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2017-03-08 17:47:40 +0100
commit	c6df55d6ebbe6102ac5136ae38813bea42d8c782 (patch)
tree	c36e3986a4a998ac19f179204d3f90033169d663 /utils/nfsynproxy.c
parent	82dacbb88e2433e49e14a86d637cfdefa8f79415 (diff)

iptables-translate: print nft command for each expand rules via dns names

We have to print nft at the very beginning for each rule that rules from the expansion, otherwise the output is not correct: # iptables-translate -I INPUT -s yahoo.com nft insert rule ip filter INPUT ip saddr 206.190.36.45 counter insert rule ip filter INPUT ip saddr 98.138.253.109 counter insert rule ip filter INPUT ip saddr 98.139.183.24 counter After this patch: # iptables-translate -I INPUT -s yahoo.com nft insert rule ip filter INPUT ip saddr 206.190.36.45 counter nft insert rule ip filter INPUT ip saddr 98.138.253.109 counter nft insert rule ip filter INPUT ip saddr 98.139.183.24 counter Reported-by: Alexander Alemayhu <alexander@alemayhu.com> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

Diffstat (limited to 'utils/nfsynproxy.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: