nat66: T4598: Add exclude options in nat66

author: Nicolas Fort <nicolasfort1988@gmail.com> 2022-08-05 17:53:13 +0000
committer: Nicolas Fort <nicolasfort1988@gmail.com> 2022-08-05 17:53:13 +0000
commit: 3a9e7eafe53108c183cf1f9f2b475f1419236956 (patch)
tree: a76296b4ac65f9a1bb987be41c2856def5bfa983 /data/templates/firewall
parent: 2a10ffa4b5074be27458159fa94d6227d0e5c7f7 (diff)
download: vyos-1x-3a9e7eafe53108c183cf1f9f2b475f1419236956.tar.gz
vyos-1x-3a9e7eafe53108c183cf1f9f2b475f1419236956.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/data/templates/firewall/nftables-nat66.j2 b/data/templates/firewall/nftables-nat66.j2
index ca19506f2..2fe04b4ff 100644
--- a/data/templates/firewall/nftables-nat66.j2
+++ b/data/templates/firewall/nftables-nat66.j2
@@ -63,6 +63,10 @@
 {% if dest_address is vyos_defined %}
 {%     set output = output ~ ' ' ~ dest_address %}
 {% endif %}
+{% if config.exclude is vyos_defined %}
+{#     rule has been marked as 'exclude' thus we simply return here #}
+{%     set trns_address = 'return' %}
+{% endif %}
 {% if trns_address is vyos_defined %}
 {%     set output = output ~ ' ' ~ trns_address %}
 {% endif %}
author	Nicolas Fort <nicolasfort1988@gmail.com>	2022-08-05 17:53:13 +0000
committer	Nicolas Fort <nicolasfort1988@gmail.com>	2022-08-05 17:53:13 +0000
commit	3a9e7eafe53108c183cf1f9f2b475f1419236956 (patch)
tree	a76296b4ac65f9a1bb987be41c2856def5bfa983 /data/templates/firewall
parent	2a10ffa4b5074be27458159fa94d6227d0e5c7f7 (diff)
download	vyos-1x-3a9e7eafe53108c183cf1f9f2b475f1419236956.tar.gz vyos-1x-3a9e7eafe53108c183cf1f9f2b475f1419236956.zip