From 7afc355b7a0d2cd9bcd698c1eaaea59ccfea4ebb Mon Sep 17 00:00:00 2001
From: Mohit Mehta <mohit.mehta@vyatta.com>
Date: Wed, 5 Aug 2009 12:28:30 -0700
Subject: add tcp_udp as a valid key to hash. feature developer is responsible
 for allowing user to use tcp_udp as a valid protocol. currently, this option
 is planned to be used for NAT and firewall only

---
 lib/Vyatta/IpTables/AddressFilter.pm | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 'lib')

diff --git a/lib/Vyatta/IpTables/AddressFilter.pm b/lib/Vyatta/IpTables/AddressFilter.pm
index 01c2795..c2d44ab 100755
--- a/lib/Vyatta/IpTables/AddressFilter.pm
+++ b/lib/Vyatta/IpTables/AddressFilter.pm
@@ -30,6 +30,13 @@ use strict;
 use warnings;
 
 my %_protocolswithports = (
+  tcp_udp => 1, 
+  # 'tcp_udp' is to be allowed for nat and firewall rules only.
+  # features should have syntax checks for allowing or forbiding
+  # the use of 'tcp_udp' as protocol. to allow tcp_udp see syntax check
+  # in protocol/node.def for NAT rules and to forbid tcp_udp see syntax
+  # check in protocol/node.def for load-balancing rules
+  # when allowed : tcp_udp creates 2 iptable rules - one for tcp, other for udp
   tcp => 1,
   udp => 1,
   6   => 1,
-- 
cgit v1.2.3