diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2019-04-03 23:40:04 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2019-04-04 13:19:33 +0200 |
commit | 3edb96200690b804ceb76a9fb0ae441ed7d4d8f0 (patch) | |
tree | 76580b8f2fe88638ba8231d50e453da88511034d /src | |
parent | 3b29acc8f29944c5cf34259f2e2b5b40b4d0ccdd (diff) |
parser_bison: missing tproxy syntax with port only for inet family
# nft add rule inet filter divert ip daddr 0.0.0.0/0 meta l4proto tcp tproxy ip to :2000
Error: syntax error, unexpected colon
add rule inet filter divert ip daddr 0.0.0.0/0 meta l4proto tcp tproxy ip to :2000
^
Syntax with no protocol for tproxy complains with:
# nft add rule inet filter divert ip daddr 0.0.0.0/0 meta l4proto tcp tproxy to :2000
Error: Conflicting network layer protocols.
add rule inet filter divert ip daddr 0.0.0.0/0 meta l4proto tcp tproxy to :2000
^^^^^^^^^^^^^^^
Closes: https://bugzilla.netfilter.org/show_bug.cgi?id=1310
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src')
-rw-r--r-- | src/parser_bison.y | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/src/parser_bison.y b/src/parser_bison.y index 65b3fb3e..50642b4e 100644 --- a/src/parser_bison.y +++ b/src/parser_bison.y @@ -2687,6 +2687,12 @@ tproxy_stmt : TPROXY TO stmt_expr $$->tproxy.addr = $4; $$->tproxy.port = $6; } + | TPROXY nf_key_proto TO COLON stmt_expr + { + $$ = tproxy_stmt_alloc(&@$); + $$->tproxy.family = $2; + $$->tproxy.port = $5; + } ; primary_stmt_expr : symbol_expr { $$ = $1; } |