nat: T538: Move nat configs to /run directory

author: Viacheslav Hletenko <v.gletenko@vyos.io> 2022-08-31 12:46:51 +0300
committer: Viacheslav Hletenko <v.gletenko@vyos.io> 2022-08-31 17:30:57 +0000
commit: 3489089000a43a533fcd89282b0ced2434851c03 (patch)
tree: 24b42a02eedbfaa2323ec65a148848f996ecf3b5 /interface-definitions/include/firewall
parent: 69bcdb9a680b33422d041fd03e70c25094bfa6a2 (diff)
parent: 69f79beee2070906b68f2b910296c362e7216278 (diff)
download: vyos-1x-3489089000a43a533fcd89282b0ced2434851c03.tar.gz
vyos-1x-3489089000a43a533fcd89282b0ced2434851c03.zip
3 files changed, 20 insertions, 2 deletions
diff --git a/interface-definitions/include/firewall/name-default-action.xml.i b/interface-definitions/include/firewall/default-action.xml.i
index 512b0296f..92a2fcaaf 100644
--- a/interface-definitions/include/firewall/name-default-action.xml.i
+++ b/interface-definitions/include/firewall/default-action.xml.i
@@ -1,4 +1,4 @@
-<!-- include start from firewall/name-default-action.xml.i -->
+<!-- include start from firewall/default-action.xml.i -->
 <leafNode name="default-action">
   <properties>
     <help>Default-action for rule-set</help>
@@ -21,5 +21,6 @@
       <regex>(drop|reject|accept)</regex>
     </constraint>
   </properties>
+  <defaultValue>drop</defaultValue>
 </leafNode>
 <!-- include end -->
diff --git a/interface-definitions/include/firewall/name-default-log.xml.i b/interface-definitions/include/firewall/enable-default-log.xml.i
index 1d0ff9497..1e64edc6e 100644
--- a/interface-definitions/include/firewall/name-default-log.xml.i
+++ b/interface-definitions/include/firewall/enable-default-log.xml.i
@@ -1,4 +1,4 @@
-<!-- include start from firewall/name-default-log.xml.i -->
+<!-- include start from firewall/enable-default-log.xml.i -->
 <leafNode name="enable-default-log">
   <properties>
     <help>Option to log packets hitting default-action</help>
diff --git a/interface-definitions/include/firewall/tcp-flags.xml.i b/interface-definitions/include/firewall/tcp-flags.xml.i
index b99896687..5a7b5a8d3 100644
--- a/interface-definitions/include/firewall/tcp-flags.xml.i
+++ b/interface-definitions/include/firewall/tcp-flags.xml.i
@@ -114,6 +114,23 @@
         </node>
       </children>
     </node>
+    <leafNode name="mss">
+      <properties>
+        <help>Maximum segment size (MSS)</help>
+        <valueHelp>
+          <format>u32:1-16384</format>
+          <description>Maximum segment size</description>
+        </valueHelp>
+        <valueHelp>
+          <format>&lt;min&gt;-&lt;max&gt;</format>
+          <description>TCP MSS range (use '-' as delimiter)</description>
+        </valueHelp>
+        <constraint>
+          <validator name="numeric" argument="--range 1-16384"/>
+          <validator name="range" argument="--min=1 --max=16384"/>
+        </constraint>
+      </properties>
+    </leafNode>
   </children>
 </node>
 <!-- include end -->
author	Viacheslav Hletenko <v.gletenko@vyos.io>	2022-08-31 12:46:51 +0300
committer	Viacheslav Hletenko <v.gletenko@vyos.io>	2022-08-31 17:30:57 +0000
commit	3489089000a43a533fcd89282b0ced2434851c03 (patch)
tree	24b42a02eedbfaa2323ec65a148848f996ecf3b5 /interface-definitions/include/firewall
parent	69bcdb9a680b33422d041fd03e70c25094bfa6a2 (diff)
parent	69f79beee2070906b68f2b910296c362e7216278 (diff)
download	vyos-1x-3489089000a43a533fcd89282b0ced2434851c03.tar.gz vyos-1x-3489089000a43a533fcd89282b0ced2434851c03.zip