From 166d44b32813c9dd64c3857beaf5eac8382b2d6d Mon Sep 17 00:00:00 2001
From: Igor Melnyk <igor_melnyk@ukr.net>
Date: Sat, 26 Jun 2021 10:48:54 +0300
Subject: nat: T1083: add translation options for persistent/random mapping of
 address and port

Tested using:

set destination rule 100 inbound-interface 'eth0'
set destination rule 100 translation address '19.13.23.42'
set destination rule 100 translation options address-mapping 'random'
set destination rule 100 translation options port-mapping 'none'

set source rule 1000 outbound-interface 'eth0'
set source rule 1000 translation address '122.233.231.12'
set source rule 1000 translation options address-mapping 'persistent'
set source rule 1000 translation options port-mapping 'fully-random'
---
 .../include/nat-translation-options.xml.i          | 51 ++++++++++++++++++++++
 interface-definitions/nat.xml.in                   |  2 +
 2 files changed, 53 insertions(+)
 create mode 100644 interface-definitions/include/nat-translation-options.xml.i

(limited to 'interface-definitions')

diff --git a/interface-definitions/include/nat-translation-options.xml.i b/interface-definitions/include/nat-translation-options.xml.i
new file mode 100644
index 000000000..defc8c0d5
--- /dev/null
+++ b/interface-definitions/include/nat-translation-options.xml.i
@@ -0,0 +1,51 @@
+<!-- include start from nat-translation-options.xml.i -->
+<node name="options">
+  <properties>
+    <help>Translation options</help>
+  </properties>
+  <children>
+    <leafNode name="address-mapping">
+      <properties>
+        <help>Address mapping options</help>
+        <completionHelp>
+          <list>persistent random</list>
+        </completionHelp>
+        <valueHelp>
+          <format>persistent</format>
+          <description>Gives a client the same source or destination-address for each connection</description>
+        </valueHelp>
+        <valueHelp>
+          <format>random</format>
+          <description>Random source or destination address allocation for each connection (defaut)</description>
+        </valueHelp>
+        <constraint>
+          <regex>^(persistent|random)$</regex>
+        </constraint>
+      </properties>
+    </leafNode> 
+    <leafNode name="port-mapping">
+      <properties>
+        <help>Port mapping options</help>
+        <completionHelp>
+          <list>random fully-random none</list>
+        </completionHelp>
+        <valueHelp>
+          <format>random</format>
+          <description>Randomize source port mapping</description>
+        </valueHelp>
+        <valueHelp>
+          <format>fully-random</format>
+          <description>Full port randomization</description>
+        </valueHelp>
+        <valueHelp>
+          <format>none</format>
+          <description>Do not apply port randomization (default)</description>
+        </valueHelp>
+        <constraint>
+          <regex>^(random|fully-random|none)$</regex>
+        </constraint>
+      </properties>
+    </leafNode> 
+  </children>
+</node>
+<!-- include end -->
diff --git a/interface-definitions/nat.xml.in b/interface-definitions/nat.xml.in
index 9862f49b2..3cf3ba6aa 100644
--- a/interface-definitions/nat.xml.in
+++ b/interface-definitions/nat.xml.in
@@ -50,6 +50,7 @@
                     </properties>
                   </leafNode>
                   #include <include/nat-translation-port.xml.i>
+                  #include <include/nat-translation-options.xml.i>
                 </children>
               </node>
             </children>
@@ -101,6 +102,7 @@
                     </properties>
                   </leafNode>
                   #include <include/nat-translation-port.xml.i>
+                  #include <include/nat-translation-options.xml.i>
                 </children>
               </node>
             </children>
-- 
cgit v1.2.3