diff options
author | Alexander Chernavin <achernavin@netgate.com> | 2020-12-11 03:36:45 -0500 |
---|---|---|
committer | Ole Tr�an <otroan@employees.org> | 2021-02-09 15:58:29 +0000 |
commit | f039587701b47b3b27e281858eef56b29ff91864 (patch) | |
tree | cafb74baea20b6e45c5be2c9e34a3d86e7020f3c /src/plugins/urpf/urpf.h | |
parent | c9c9143898aa1f5b5aa90ab03a4c94181dcf7ed6 (diff) |
nat: deny adding intf addr if static-mapping-only
If static-mapping-only is enabled, NAT pool cannot be configured, only
static mappings. There're two ways to add addresses to the NAT pool:
by address range, or by first found address from an interface.
NAT44_ADD_DEL_ADDRESS_RANGE already tests if dynamic mappings are
available but NAT44_ADD_DEL_INTERFACE_ADDR doesn't. If
static-mapping-only is enabled, adding addresses by range is rejected
but by interface not.
With this change, if static-mapping-only is enabled, do not allow to
add addresses to the NAT pool both ways.
Type: fix
Signed-off-by: Alexander Chernavin <achernavin@netgate.com>
Change-Id: Ifc055ea9a71a5e579388833a2990aef21bf7ed29
Diffstat (limited to 'src/plugins/urpf/urpf.h')
0 files changed, 0 insertions, 0 deletions