Add VYATTA_PRE_DNAT_HOOK in nat PREROUTING table.

author: Stig Thormodsrud <stig@vyatta.com> 2010-04-09 14:53:09 -0700
committer: Stig Thormodsrud <stig@vyatta.com> 2010-04-09 14:53:09 -0700
commit: 819727e311451d955156fa9441abb8ab4cd5f280 (patch)
tree: 9735785bafedc95afd5638ddaaa075ed0fb70150 /scripts
parent: 5db7fdc0c878df70ef84db66511e660deae46a5f (diff)
download: vyatta-cfg-firewall-819727e311451d955156fa9441abb8ab4cd5f280.tar.gz
vyatta-cfg-firewall-819727e311451d955156fa9441abb8ab4cd5f280.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/scripts/firewall/firewall.init.in b/scripts/firewall/firewall.init.in
index c3a0115..d93b13c 100644
--- a/scripts/firewall/firewall.init.in
+++ b/scripts/firewall/firewall.init.in
@@ -74,6 +74,11 @@ start () {
     iptables -A INPUT -j VYATTA_POST_FW_HOOK
     iptables -A FORWARD -j VYATTA_POST_FW_HOOK
 
+    # set up pre-DNAT hook
+    iptables -t nat -N VYATTA_PRE_DNAT_HOOK
+    iptables -t nat -A VYATTA_PRE_DNAT_HOOK -j RETURN
+    iptables -t nat -A PREROUTING -j VYATTA_PRE_DNAT_HOOK
+
     # set up pre-SNAT hook
     iptables -t nat -N VYATTA_PRE_SNAT_HOOK
     iptables -t nat -A VYATTA_PRE_SNAT_HOOK -j RETURN
author	Stig Thormodsrud <stig@vyatta.com>	2010-04-09 14:53:09 -0700
committer	Stig Thormodsrud <stig@vyatta.com>	2010-04-09 14:53:09 -0700
commit	819727e311451d955156fa9441abb8ab4cd5f280 (patch)
tree	9735785bafedc95afd5638ddaaa075ed0fb70150 /scripts
parent	5db7fdc0c878df70ef84db66511e660deae46a5f (diff)
download	vyatta-cfg-firewall-819727e311451d955156fa9441abb8ab4cd5f280.tar.gz vyatta-cfg-firewall-819727e311451d955156fa9441abb8ab4cd5f280.zip