summaryrefslogtreecommitdiff
path: root/python/vyos
diff options
context:
space:
mode:
authorNicolas Fort <nicolasfort1988@gmail.com>2024-08-14 12:12:56 +0000
committerMergify <37929162+mergify[bot]@users.noreply.github.com>2024-08-14 16:35:10 +0000
commitebcb9c6e9a5b55219c3d538686df4a55cdcdc86d (patch)
treeb3b4da382fe38782344bfc054abe849662157937 /python/vyos
parent948efe77310820a39083745573ae99644e30ef6e (diff)
downloadvyos-1x-ebcb9c6e9a5b55219c3d538686df4a55cdcdc86d.tar.gz
vyos-1x-ebcb9c6e9a5b55219c3d538686df4a55cdcdc86d.zip
T6646: conntrack: in ignore rules, if protocols=all, do not append it to the rule
(cherry picked from commit 2d953bedd0e416ead924f77ec612c997f950535a)
Diffstat (limited to 'python/vyos')
-rwxr-xr-x[-rw-r--r--]python/vyos/template.py3
1 files changed, 2 insertions, 1 deletions
diff --git a/python/vyos/template.py b/python/vyos/template.py
index e8d7ba669..768c43387 100644..100755
--- a/python/vyos/template.py
+++ b/python/vyos/template.py
@@ -694,7 +694,8 @@ def conntrack_rule(rule_conf, rule_id, action, ipv6=False):
else:
for protocol, protocol_config in rule_conf['protocol'].items():
proto = protocol
- output.append(f'meta l4proto {proto}')
+ if proto != 'all':
+ output.append(f'meta l4proto {proto}')
tcp_flags = dict_search_args(rule_conf, 'tcp', 'flags')
if tcp_flags and action != 'timeout':