Page MenuHomeVyOS Platform

Netboy3 (Mat)
User

Projects

User does not belong to any projects.

User Details

User Since
Mon, Sep 19, 1:24 AM (2 w, 3 d)

Recent Activity

Thu, Sep 22

Netboy3 added a comment to T4706: NAT and NAT66 issues.

@jack9603301 I've tested your updated PR and it seems to work well now. Thank you for the quick response.
@sdev I've tested your PR and it seems to also fix both issues. I did not test anything beyond DNAT port only in both ip and ip6 families.

Thu, Sep 22, 2:51 AM · VyOS 1.4 Sagitta

Wed, Sep 21

Netboy3 added a comment to T4706: NAT and NAT66 issues.

@jack9603301, your PR solves the NAT66 issue - thank you. However, the change you made to nat.py to try to solve the NAT44 issue is not complete and seem to also require a template change. I'll post additional details in the PR.

Wed, Sep 21, 2:33 PM · VyOS 1.4 Sagitta

Mon, Sep 19

Netboy3 added a comment to T4706: NAT and NAT66 issues.

Why would you enforce an address? It is perfectly OK to have port-only DNAT66 without any destination address such as:
nft add rule ip6 nat PREROUTING iifname eth1 counter tcp dport 443 dnat to :3000
Problem is that the test logic breaks on this and spits out a wrong statement to NFT that barfs on it.

Mon, Sep 19, 8:55 PM · VyOS 1.4 Sagitta