diff options
| author | Jarno Rajahalme | 2016-03-10 19:54:23 +0100 |
|---|---|---|
| committer | Pablo Neira Ayuso | 2016-03-14 23:47:29 +0100 |
| commit | 05752523e56502cd9975aec0a2ded465d51a71f3 (patch) | |
| tree | 790e1c4d9855ca15e1104ef9697c342dfe08a780 /net/netfilter/nf_conntrack_core.c | |
| parent | openvswitch: Delay conntrack helper call for new connections. (diff) | |
| download | kernel-qcow2-linux-05752523e56502cd9975aec0a2ded465d51a71f3.tar.gz kernel-qcow2-linux-05752523e56502cd9975aec0a2ded465d51a71f3.tar.xz kernel-qcow2-linux-05752523e56502cd9975aec0a2ded465d51a71f3.zip | |
openvswitch: Interface with NAT.
Extend OVS conntrack interface to cover NAT. New nested
OVS_CT_ATTR_NAT attribute may be used to include NAT with a CT action.
A bare OVS_CT_ATTR_NAT only mangles existing and expected connections.
If OVS_NAT_ATTR_SRC or OVS_NAT_ATTR_DST is included within the nested
attributes, new (non-committed/non-confirmed) connections are mangled
according to the rest of the nested attributes.
The corresponding OVS userspace patch series includes test cases (in
tests/system-traffic.at) that also serve as example uses.
This work extends on a branch by Thomas Graf at
https://github.com/tgraf/ovs/tree/nat.
Signed-off-by: Jarno Rajahalme <jarno@ovn.org>
Acked-by: Thomas Graf <tgraf@suug.ch>
Acked-by: Joe Stringer <joe@ovn.org>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'net/netfilter/nf_conntrack_core.c')
0 files changed, 0 insertions, 0 deletions