Merge pull request #4113 from vyos/mergify/bp/circinus/pr-4024

T6687: add fqdn support to nat rules. (backport #4024)
author: Christian Breunig <christian@breunig.cc> 2024-09-30 17:27:17 +0200
committer: GitHub <noreply@github.com> 2024-09-30 17:27:17 +0200
commit: e663fc49edc3043d63b648b482b633c1ff233ac4 (patch)
tree: df2ba35456a772222de1dd475d8ff21faf883571 /data/templates/firewall/nftables-nat.j2
parent: 2cd0baa50e244529462e3aed064b923c6cbab859 (diff)
parent: 8dcb042bb2352717395ba3c17bc5437534c83af5 (diff)
download: vyos-1x-e663fc49edc3043d63b648b482b633c1ff233ac4.tar.gz
vyos-1x-e663fc49edc3043d63b648b482b633c1ff233ac4.zip
1 files changed, 13 insertions, 0 deletions
diff --git a/data/templates/firewall/nftables-nat.j2 b/data/templates/firewall/nftables-nat.j2
index 4254f6a0e..8c8dd3a8b 100644
--- a/data/templates/firewall/nftables-nat.j2
+++ b/data/templates/firewall/nftables-nat.j2
@@ -19,6 +19,12 @@ table ip vyos_nat {
 {%         endfor %}
 {%     endif %}
     }
+{%     for set_name in ip_fqdn %}
+    set FQDN_nat_{{ set_name }} {
+        type ipv4_addr
+        flags interval
+    }
+{%     endfor %}
 
     #
     # Source NAT rules build up here
@@ -31,7 +37,14 @@ table ip vyos_nat {
         {{ config | nat_rule(rule, 'source') }}
 {%         endfor %}
 {%     endif %}
+
+    }
+{%     for set_name in ip_fqdn %}
+    set FQDN_nat_{{ set_name }} {
+        type ipv4_addr
+        flags interval
     }
+{%     endfor %}
 
     chain VYOS_PRE_DNAT_HOOK {
         return
author	Christian Breunig <christian@breunig.cc>	2024-09-30 17:27:17 +0200
committer	GitHub <noreply@github.com>	2024-09-30 17:27:17 +0200
commit	e663fc49edc3043d63b648b482b633c1ff233ac4 (patch)
tree	df2ba35456a772222de1dd475d8ff21faf883571 /data/templates/firewall/nftables-nat.j2
parent	2cd0baa50e244529462e3aed064b923c6cbab859 (diff)
parent	8dcb042bb2352717395ba3c17bc5437534c83af5 (diff)
download	vyos-1x-e663fc49edc3043d63b648b482b633c1ff233ac4.tar.gz vyos-1x-e663fc49edc3043d63b648b482b633c1ff233ac4.zip