diff options
Diffstat (limited to 'src/op_mode/show_nat66_rules.py')
-rwxr-xr-x | src/op_mode/show_nat66_rules.py | 14 |
1 files changed, 10 insertions, 4 deletions
diff --git a/src/op_mode/show_nat66_rules.py b/src/op_mode/show_nat66_rules.py index cbab2d03b..736ba2063 100755 --- a/src/op_mode/show_nat66_rules.py +++ b/src/op_mode/show_nat66_rules.py @@ -40,10 +40,17 @@ if args.source or args.destination: data_json = jmespath.search('nftables[?rule].rule[?chain]', tmp) for idx in range(0, len(data_json)): data = data_json[idx] + + # If there is no index 3, we don't think this is the record we need to check + if len(data['expr']) <= 3: + continue + comment = data['comment'] + rule = comment.replace('SRC-NAT66-','') + rule = rule.replace('DST-NAT66-','') chain = data['chain'] if not (args.source and chain == 'POSTROUTING') or (not args.source and chain == 'PREROUTING'): - exit(0) + continue interface = dict_search('match.right', data['expr'][0]) srcdest = dict_search('match.right.prefix.addr', data['expr'][2]) if srcdest: @@ -52,6 +59,7 @@ if args.source or args.destination: srcdest = srcdest + '/' + str(addr_tmp) else: srcdest = dict_search('match.right', data['expr'][2]) + tran_addr = dict_search('snat.addr.prefix.addr' if args.source else 'dnat.addr.prefix.addr', data['expr'][3]) if tran_addr: addr_tmp = dict_search('snat.addr.prefix.len' if args.source else 'dnat.addr.prefix.len', data['expr'][3]) @@ -60,12 +68,10 @@ if args.source or args.destination: else: if 'masquerade' in data['expr'][3]: tran_addr = 'masquerade' - elif 'log' in data['expr'][3]: - continue else: tran_addr = dict_search('snat.addr' if args.source else 'dnat.addr', data['expr'][3]) - print(format_nat66_rule % (comment, srcdest, tran_addr, interface)) + print(format_nat66_rule % (rule, srcdest, tran_addr, interface)) exit(0) else: |