Diffusion FreeBSD src repository aa69fdf1542d

pfctl: change for af-to / NAT64 support.
aa69fdf1542d
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

pfctl: change for af-to / NAT64 support.

The general syntax is:
pass in inet from any to 192.168.1.1 af-to inet6 from 2001::1 to 2001::2
In the NAT64 case the "to" is not needed in af-to and the IP is extraced
from the IPv6 dst (assuming a /64 prefix).
Again most work by sperreault@, mikeb@ and reyk@
OK mcbride@, put it in deraadt@

Obtained from: OpenBSD, claudio <claudio@openbsd.org>, 0cde32ce3f
Sponsored by: Rubicon Communications, LLC ("Netgate")
Differential Revision: https://reviews.freebsd.org/D47790

Details

Provenance

kp	Authored on Oct 10 2024, 8:09 AM

Differential Revision

D47790: pfctl: change for af-to / NAT64 support.

Parents

rGb8e538443882: pf: drop packets if they fail nat64 translation

Branches

Unknown

Tags

Unknown

Event Timeline

kp committed rGaa69fdf1542d: pfctl: change for af-to / NAT64 support. (authored by kp).Dec 17 2024, 10:07 AM

kp added an edge: D47790: pfctl: change for af-to / NAT64 support..Dec 17 2024, 10:09 AM

Changes (9)

Path

Size

lib/

libpfctl/

sbin/

pfctl/

pf_print_state.c

sys/

net/

netpfil/

pf/

rGaa69fdf1542d

lib/libpfctl/libpfctl.c

Loading...

lib/libpfctl/libpfctl.h

Loading...

sbin/pfctl/parse.y

Loading...

sbin/pfctl/pf_print_state.c

Loading...

sbin/pfctl/pfctl.c

Loading...

sbin/pfctl/pfctl_parser.c

Loading...

sys/net/pfvar.h

Loading...

sys/netpfil/pf/pf_nl.c

Loading...

sys/netpfil/pf/pf_nl.h

Loading...