speatzle/nfsense
1
0
Fork 0
mirror of https://github.com/speatzle/nfsense.git synced 2025-06-28 07:19:37 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix nat action generation

Browse source
This commit is contained in:
Samuel Lorch 2023-05-13 23:43:55 +02:00
parent 25b230e9c2
commit f2c9a8acc4
1 changed files with 11 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
internal/nftables/action.go
View file

@ -28,12 +28,17 @@ func GenerateDestinationNatAction(conf config.Config, rule firewall.DestinationN
panic("invalid service type") panic("invalid service type")
} }
} }
// TODO if the destination is ip v6 use ip6 instead of ip here
if rule.Address != nil {
return "dnat ip to " + destination
}
// ip or ip6 are not needed if the addresses is not changed
return "dnat to " + destination return "dnat to " + destination
} }
func GenerateSourceNatAction(conf config.Config, rule firewall.SourceNATRule) string { func GenerateSourceNatAction(conf config.Config, rule firewall.SourceNATRule) string {
if rule.Type == firewall.Masquerade { if rule.Type == firewall.Masquerade {
return "masqerade" return "masquerade"
} }
source := "" source := ""
@ -60,5 +65,10 @@ func GenerateSourceNatAction(conf config.Config, rule firewall.SourceNATRule) st
} }
} }
// TODO if the destination is ip v6 use ip6 instead of ip here
if rule.Address != nil {
return "snat ip to " + source
}
// ip or ip6 are not needed if the addresses is not changed
return "snat to " + source return "snat to " + source
} }