diff options
| author | Christian Poessinger <christian@poessinger.com> | 2022-08-08 20:00:55 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2022-08-08 20:00:55 +0200 |
| commit | 7ae34b68649ef526c18e662d444465bf18a23939 (patch) | |
| tree | 282d2a4d2b16ba141470d889127798c2cd67274a /data | |
| parent | 1b637f78b870f8ecc4971de5baf0a6fda54c40f7 (diff) | |
| parent | 0863b441f4a95c3d3f678f42f31800e9ec4c924a (diff) | |
| download | vyos-1x-7ae34b68649ef526c18e662d444465bf18a23939.tar.gz vyos-1x-7ae34b68649ef526c18e662d444465bf18a23939.zip | |
Merge pull request #1461 from nicolas-fort/nat66-exclude
nat66: T4598: Add exclude options in nat66
Diffstat (limited to 'data')
| -rw-r--r-- | data/templates/firewall/nftables-nat66.j2 | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/data/templates/firewall/nftables-nat66.j2 b/data/templates/firewall/nftables-nat66.j2 index ca19506f2..2fe04b4ff 100644 --- a/data/templates/firewall/nftables-nat66.j2 +++ b/data/templates/firewall/nftables-nat66.j2 @@ -63,6 +63,10 @@ {% if dest_address is vyos_defined %} {% set output = output ~ ' ' ~ dest_address %} {% endif %} +{% if config.exclude is vyos_defined %} +{# rule has been marked as 'exclude' thus we simply return here #} +{% set trns_address = 'return' %} +{% endif %} {% if trns_address is vyos_defined %} {% set output = output ~ ' ' ~ trns_address %} {% endif %} |