projects / project / firewall3.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c5c87e4) | patch
zones: properly handle multiple masq_src / masq_dest negations (FS#248)
authorJo-Philipp Wich <jo@mein.io>
Tue, 1 Nov 2016 22:19:24 +0000 (23:19 +0100)
committerJo-Philipp Wich <jo@mein.io>
Tue, 1 Nov 2016 22:44:53 +0000 (23:44 +0100)
commit097282eace13feb4a115b55d497588bf2b550f62
treefce8a45405f52c969d5544d1b7a7019651c92057tree | snapshot
parentc5c87e46994635c11b75d01129a57ba42570fa03commit | diff
zones: properly handle multiple masq_src / masq_dest negations (FS#248)

Properly implement masquerade exceptions by using -j RETURN rules to jump out
of the postrouting container chain and only emit the permutated -j MASQUERADE
rules for non-negated addresses.

Fixes FD#248.

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
zones.c diff | blob | history
OpenWrt firewall configuration utility