diff options
author | Alexander Skorichenko <askorichenko@netgate.com> | 2022-05-27 08:23:20 +0000 |
---|---|---|
committer | Matthew Smith <mgsmith@netgate.com> | 2022-05-31 21:27:02 +0000 |
commit | d1ca70c7e11dac7b9fff802ca5f1d9051c984c34 (patch) | |
tree | 2b4dcee1e4b1300bfa9949d1dc9458702be9552d /src/plugins/wireguard/wireguard_timer.h | |
parent | 78d24f3e5e4f501f91f9bf353a4250fc1274380b (diff) |
nat: disable nat44-ei-in2out-output ttl check
Type: fix
A packet passing through nat44-ei-in2out-output,
has its ttl value validated in earlier nodes.
"ip4-input" node checks ttl for locally generated packets.
"ip4-rewrite" node validates ttl in forwarded packets.
Thus for example, the ED counterpart disables ttl checks
in its "nat44-ed-in2out-output" node.
This patch updates nat44 EI conditions for ttl checks to
those currently used in nat44 ED case, meaning no extra ttl
validation for in2out when output-feature is enabled.
Signed-off-by: Alexander Skorichenko <askorichenko@netgate.com>
Change-Id: Idd15d7c9a746b60c0a6dac5537d00ef10c257fdc
Diffstat (limited to 'src/plugins/wireguard/wireguard_timer.h')
0 files changed, 0 insertions, 0 deletions