masquerading set rule applied after other SNAT rulesv0.1.4

author: Kaarle Ritvanen <kaarle.ritvanen@datakunkku.fi> 2012-06-21 13:13:34 +0000
committer: Kaarle Ritvanen <kaarle.ritvanen@datakunkku.fi> 2012-06-21 13:13:34 +0000
commit: c4e427e67b7c7f62598fa33e54b950b98a1f9d06 (patch)
tree: 71607bc752b0a981a13d7d4e14466f6047687141
parent: 059468bdc180bac1bf0866c6343b1384fdf16c52 (diff)
download: awall-0.1.4.tar.bz2
awall-0.1.4.tar.xz
1 files changed, 6 insertions, 4 deletions
diff --git a/awall/modules/masquerade.lua b/awall/modules/masquerade.lua
index 7558023..23d0fe4 100644
--- a/awall/modules/masquerade.lua
+++ b/awall/modules/masquerade.lua
@@ -10,7 +10,9 @@ module(..., package.seeall)
 classes = {}
 
 -- TODO configuration of the ipset via JSON config
-defrules = {pre={{family='inet', table='nat', chain='POSTROUTING',
-		  opts='-m set --match-set awall-masquerade src -j awall-masquerade'},
-		 {family='inet', table='nat', chain='awall-masquerade',
-		  opts='-m set ! --match-set awall-masquerade dst -j MASQUERADE'}}}
+defrules = {['post-snat']={{family='inet', table='nat',
+			    chain='POSTROUTING',
+			    opts='-m set --match-set awall-masquerade src -j awall-masquerade'},
+			   {family='inet', table='nat',
+			    chain='awall-masquerade',
+			    opts='-m set ! --match-set awall-masquerade dst -j MASQUERADE'}}}
author	Kaarle Ritvanen <kaarle.ritvanen@datakunkku.fi>	2012-06-21 13:13:34 +0000
committer	Kaarle Ritvanen <kaarle.ritvanen@datakunkku.fi>	2012-06-21 13:13:34 +0000
commit	c4e427e67b7c7f62598fa33e54b950b98a1f9d06 (patch)
tree	71607bc752b0a981a13d7d4e14466f6047687141
parent	059468bdc180bac1bf0866c6343b1384fdf16c52 (diff)
download	awall-0.1.4.tar.bz2 awall-0.1.4.tar.xz