diff options
author | Florian Westphal <fw@strlen.de> | 2017-04-20 10:11:35 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2017-04-26 09:30:22 +0200 |
commit | 9a08ecfe74d7796ddc92ec312d3b7eaeba5a7c22 (patch) | |
tree | 2a9fa3c6cb2122050ee531d019d7c9fde52bd28a /net/ipv4 | |
parent | 2fe7c321ab54d391dffb98911f5fb5cd315d6526 (diff) | |
download | op-kernel-dev-9a08ecfe74d7796ddc92ec312d3b7eaeba5a7c22.zip op-kernel-dev-9a08ecfe74d7796ddc92ec312d3b7eaeba5a7c22.tar.gz |
netfilter: don't attach a nat extension by default
nowadays the NAT extension only stores the interface index
(used to purge connections that got masqueraded when interface goes down)
and pptp nat information.
Previous patches moved nf_ct_nat_ext_add to those places that need it.
Signed-off-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'net/ipv4')
-rw-r--r-- | net/ipv4/netfilter/nf_nat_l3proto_ipv4.c | 4 |
1 files changed, 1 insertions, 3 deletions
diff --git a/net/ipv4/netfilter/nf_nat_l3proto_ipv4.c b/net/ipv4/netfilter/nf_nat_l3proto_ipv4.c index e3bfa6a..feedd75 100644 --- a/net/ipv4/netfilter/nf_nat_l3proto_ipv4.c +++ b/net/ipv4/netfilter/nf_nat_l3proto_ipv4.c @@ -264,9 +264,7 @@ nf_nat_ipv4_fn(void *priv, struct sk_buff *skb, if (!ct) return NF_ACCEPT; - nat = nf_ct_nat_ext_add(ct); - if (nat == NULL) - return NF_ACCEPT; + nat = nfct_nat(ct); switch (ctinfo) { case IP_CT_RELATED: |