summaryrefslogtreecommitdiff
path: root/data
diff options
context:
space:
mode:
authorChristian Breunig <christian@breunig.cc>2025-05-12 20:48:58 +0200
committerGitHub <noreply@github.com>2025-05-12 20:48:58 +0200
commit9e0b04bc690d82d959b0e2b65ef32b72aaf828c4 (patch)
treef5c5253b4cd9c402fe1533d9631c12c2b2b3509c /data
parent324bc83fc4ce2050ff33b164b392219923d6ec5d (diff)
parent2c30c8a504a197502366e38053cf485494767c17 (diff)
downloadvyos-1x-current.tar.gz
vyos-1x-current.zip
Merge pull request #4483 from markh0338/remote-group-v6HEADcurrent
T7386: firewall: Allow IPv6 member in firewall remote-groups
Diffstat (limited to 'data')
-rw-r--r--data/templates/firewall/nftables-defines.j29
1 files changed, 9 insertions, 0 deletions
diff --git a/data/templates/firewall/nftables-defines.j2 b/data/templates/firewall/nftables-defines.j2
index 3147b4c37..a1d1fa4f6 100644
--- a/data/templates/firewall/nftables-defines.j2
+++ b/data/templates/firewall/nftables-defines.j2
@@ -44,6 +44,15 @@
}
{% endfor %}
{% endif %}
+{% if group.remote_group is vyos_defined and is_l3 and is_ipv6 %}
+{% for name, name_config in group.remote_group.items() %}
+ set R6_{{ name }} {
+ type {{ ip_type }}
+ flags interval
+ auto-merge
+ }
+{% endfor %}
+{% endif %}
{% if group.mac_group is vyos_defined %}
{% for group_name, group_conf in group.mac_group.items() %}
{% set includes = group_conf.include if group_conf.include is vyos_defined else [] %}