From 9449a8acbabf47a7e12fcf63fbfab026866e3eef Mon Sep 17 00:00:00 2001 From: Matus Fabian Date: Wed, 7 Mar 2018 03:17:57 -0800 Subject: NAT44: allow to configure one interface only as output or input feature (VPP-1192) following is not possible: set interface nat44 out GigabitEthernet0/3/0 output-feature set interface nat44 out GigabitEthernet0/3/0 Change-Id: I1592cc18390881fda66f98316700886b8f5295f0 Signed-off-by: Matus Fabian (cherry picked from commit e4e34c23fe7050c26967997fdb8f555c51fd3961) --- src/plugins/nat/nat.c | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/src/plugins/nat/nat.c b/src/plugins/nat/nat.c index 1ba3b378785..a3a104f6ae7 100644 --- a/src/plugins/nat/nat.c +++ b/src/plugins/nat/nat.c @@ -1351,6 +1351,12 @@ int snat_interface_add_del (u32 sw_if_index, u8 is_inside, int is_del) snat_static_mapping_t * m; snat_det_map_t * dm; + pool_foreach (i, sm->output_feature_interfaces, + ({ + if (i->sw_if_index == sw_if_index) + return VNET_API_ERROR_VALUE_EXIST; + })); + if (sm->static_mapping_only && !(sm->static_mapping_connection_tracking)) feature_name = is_inside ? "nat44-in2out-fast" : "nat44-out2in-fast"; else @@ -1491,6 +1497,12 @@ int snat_interface_add_del_output_feature (u32 sw_if_index, (sm->static_mapping_only && !(sm->static_mapping_connection_tracking))) return VNET_API_ERROR_UNSUPPORTED; + pool_foreach (i, sm->interfaces, + ({ + if (i->sw_if_index == sw_if_index) + return VNET_API_ERROR_VALUE_EXIST; + })); + if (is_inside) { vnet_feature_enable_disable ("ip4-unicast", "nat44-hairpin-dst", -- cgit 1.2.3-korg