From 02c63e7ded23ea90d55638f768ff943671c2c574 Mon Sep 17 00:00:00 2001
From: Mark Hayes <mark.hayes0338@gmail.com>
Date: Fri, 25 Apr 2025 11:10:07 -0400
Subject: T7386: firewall: allow mix of IPv4 and IPv6 addresses/prefixes/ranges
 in remote groups

---
 data/templates/firewall/nftables-defines.j2 | 9 +++++++++
 1 file changed, 9 insertions(+)

(limited to 'data')

diff --git a/data/templates/firewall/nftables-defines.j2 b/data/templates/firewall/nftables-defines.j2
index 3147b4c37..a1d1fa4f6 100644
--- a/data/templates/firewall/nftables-defines.j2
+++ b/data/templates/firewall/nftables-defines.j2
@@ -44,6 +44,15 @@
     }
 {%         endfor %}
 {%     endif %}
+{%     if group.remote_group is vyos_defined and is_l3 and is_ipv6 %}
+{%         for name, name_config in group.remote_group.items() %}
+    set R6_{{ name }} {
+        type {{ ip_type }}
+        flags interval
+        auto-merge
+    }
+{%         endfor %}
+{%     endif %}
 {%     if group.mac_group is vyos_defined %}
 {%         for group_name, group_conf in group.mac_group.items() %}
 {%             set includes = group_conf.include if group_conf.include is vyos_defined else [] %}
-- 
cgit v1.2.3