From 81dee963a9ca3224ddbd54767a36efae5851a001 Mon Sep 17 00:00:00 2001 From: sarthurdev <965089+sarthurdev@users.noreply.github.com> Date: Sun, 24 Sep 2023 14:38:12 +0200 Subject: firewall: T5614: Add support for matching on conntrack helper --- .../include/firewall/common-rule-inet.xml.i | 1 + .../include/firewall/conntrack-helper.xml.i | 42 ++++++++++++++++++++++ 2 files changed, 43 insertions(+) create mode 100644 interface-definitions/include/firewall/conntrack-helper.xml.i (limited to 'interface-definitions/include/firewall') diff --git a/interface-definitions/include/firewall/common-rule-inet.xml.i b/interface-definitions/include/firewall/common-rule-inet.xml.i index e51dd0056..3dbfbb65c 100644 --- a/interface-definitions/include/firewall/common-rule-inet.xml.i +++ b/interface-definitions/include/firewall/common-rule-inet.xml.i @@ -4,6 +4,7 @@ #include #include #include +#include #include diff --git a/interface-definitions/include/firewall/conntrack-helper.xml.i b/interface-definitions/include/firewall/conntrack-helper.xml.i new file mode 100644 index 000000000..ee17f2c61 --- /dev/null +++ b/interface-definitions/include/firewall/conntrack-helper.xml.i @@ -0,0 +1,42 @@ + + + + Match related traffic from conntrack helpers + + ftp h323 pptp nfs sip tftp sqlnet + + + ftp + Related traffic from FTP helper + + + h323 + Related traffic from H.323 helper + + + pptp + Related traffic from PPTP helper + + + nfs + Related traffic from NFS helper + + + sip + Related traffic from SIP helper + + + tftp + Related traffic from TFTP helper + + + sqlnet + Related traffic from SQLNet helper + + + (ftp|h323|pptp|nfs|sip|tftp|sqlnet) + + + + + -- cgit v1.2.3