nat: T4605: Refactor NAT to use python module for parsing rules

* Rename table to vyos_nat * Refactor tests to use `verify_nftables` format
author: sarthurdev <965089+sarthurdev@users.noreply.github.com> 2022-09-20 14:19:23 +0200
committer: sarthurdev <965089+sarthurdev@users.noreply.github.com> 2022-09-21 20:53:49 +0200
commit: 448d4f6db9cf6dfceffccf988301e5f4d04c9afa (patch)
tree: 8cdb965b4cabfcdf02c53e7046833d0cd5610df0 /data/vyos-firewall-init.conf
parent: e9c233d65cfffccca131afb4cfb0bcaae0836c39 (diff)
download: vyos-1x-448d4f6db9cf6dfceffccf988301e5f4d04c9afa.tar.gz
vyos-1x-448d4f6db9cf6dfceffccf988301e5f4d04c9afa.zip
1 files changed, 2 insertions, 14 deletions
diff --git a/data/vyos-firewall-init.conf b/data/vyos-firewall-init.conf
index cd815148e..348299462 100644
--- a/data/vyos-firewall-init.conf
+++ b/data/vyos-firewall-init.conf
@@ -20,22 +20,10 @@ table ip vyos_static_nat {
     }
 }
 
+# Required by wanloadbalance
 table ip nat {
-    chain PREROUTING {
-        type nat hook prerouting priority -100; policy accept;
-        counter jump VYOS_PRE_DNAT_HOOK
-    }
-
-    chain POSTROUTING {
-        type nat hook postrouting priority 100; policy accept;
-        counter jump VYOS_PRE_SNAT_HOOK
-    }
-
-    chain VYOS_PRE_DNAT_HOOK {
-        return
-    }
-
     chain VYOS_PRE_SNAT_HOOK {
+        type nat hook postrouting priority 99; policy accept;
         return
     }
 }
author	sarthurdev <965089+sarthurdev@users.noreply.github.com>	2022-09-20 14:19:23 +0200
committer	sarthurdev <965089+sarthurdev@users.noreply.github.com>	2022-09-21 20:53:49 +0200
commit	448d4f6db9cf6dfceffccf988301e5f4d04c9afa (patch)
tree	8cdb965b4cabfcdf02c53e7046833d0cd5610df0 /data/vyos-firewall-init.conf
parent	e9c233d65cfffccca131afb4cfb0bcaae0836c39 (diff)
download	vyos-1x-448d4f6db9cf6dfceffccf988301e5f4d04c9afa.tar.gz vyos-1x-448d4f6db9cf6dfceffccf988301e5f4d04c9afa.zip