Google Git
Sign in
googlers / maze / iptables / 4b7a4afaa240e5d2039e612e125b045d5d1cb7fa
commit4b7a4afaa240e5d2039e612e125b045d5d1cb7fa[log] [tgz]
authorPablo Neira Ayuso <pablo@netfilter.org>Tue Oct 08 10:50:39 2013 +0200
committerPablo Neira Ayuso <pablo@netfilter.org>Mon Dec 30 23:50:51 2013 +0100
tree21f637d3047580ea76617af38e6fad82c9d7a5c0
parente8cbd65dcef62333b5e461cb264c844065b33e9a [diff]
xtables: fix missing ipt_entry for MASQUERADE target

The MASQUERADE target relies on the ipt_entry information that is
set in ->post_parse, which is too late.

Add a new hook called ->pre_parse, that sets the protocol
information accordingly.

Thus:

	xtables -4 -A POSTROUTING -t nat -p tcp \
		-j MASQUERADE --to-ports 1024

works again.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
4 files changed
tree: 21f637d3047580ea76617af38e6fad82c9d7a5c0
  1. etc/
  2. extensions/
  3. include/
  4. iptables/
  5. libipq/
  6. libiptc/
  7. libxtables/
  8. m4/
  9. tests/
  10. utils/
  11. .gitignore
  12. autogen.sh
  13. COMMIT_NOTES
  14. configure.ac
  15. COPYING
  16. INCOMPATIBILITIES
  17. INSTALL
  18. Makefile.am
  19. release.sh