8e12b6fd3e
Remove unnecessary 464xlat wan forwarding firewall rule with as outgoing interface the 464xlat interface and as destination the local IPv6 464xlat address as it's never hit. Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
92 lines
2.2 KiB
Bash
Executable file
92 lines
2.2 KiB
Bash
Executable file
#!/bin/sh
|
|
# 464xlat.sh - 464xlat CLAT
|
|
#
|
|
# Copyright (c) 2015 Steven Barth <cyrus@openwrt.org>
|
|
#
|
|
# This program is free software; you can redistribute it and/or modify
|
|
# it under the terms of the GNU General Public License version 2
|
|
# as published by the Free Software Foundation
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU General Public License for more details.
|
|
|
|
[ -n "$INCLUDE_ONLY" ] || {
|
|
. /lib/functions.sh
|
|
. /lib/functions/network.sh
|
|
. ../netifd-proto.sh
|
|
init_proto "$@"
|
|
}
|
|
|
|
proto_464xlat_setup() {
|
|
local cfg="$1"
|
|
local iface="$2"
|
|
local link="464-$cfg"
|
|
|
|
local ip6addr ip6prefix tunlink zone
|
|
json_get_vars ip6addr ip6prefix tunlink zone
|
|
|
|
[ -z "$zone" ] && zone="wan"
|
|
|
|
( proto_add_host_dependency "$cfg" "::" "$tunlink" )
|
|
|
|
if [ -z "$tunlink" ] && ! network_find_wan6 tunlink; then
|
|
proto_notify_error "$cfg" "NO_WAN_LINK"
|
|
return
|
|
fi
|
|
network_get_device tundev "$tunlink"
|
|
|
|
ip6addr=$(464xlatcfg "$link" "$tundev" "$ip6prefix" 192.0.0.1 $ip6addr)
|
|
if [ -z "$ip6addr" ]; then
|
|
proto_notify_error "$cfg" "CLAT_CONFIG_FAILED"
|
|
return
|
|
fi
|
|
|
|
proto_init_update "$link" 1
|
|
proto_add_ipv4_route "0.0.0.0" 0 "" "" 2048
|
|
proto_add_ipv6_route $ip6addr 128 "" "" "" "" 128
|
|
|
|
proto_add_data
|
|
[ "$zone" != "-" ] && json_add_string zone "$zone"
|
|
|
|
json_add_array firewall
|
|
json_add_object ""
|
|
json_add_string type nat
|
|
json_add_string target SNAT
|
|
json_add_string family inet
|
|
json_add_string snat_ip 192.0.0.1
|
|
json_close_object
|
|
json_add_object ""
|
|
json_add_string type rule
|
|
json_add_string family inet6
|
|
json_add_string proto all
|
|
json_add_string direction in
|
|
json_add_string dest "$zone"
|
|
json_add_string src "$zone"
|
|
json_add_string src_ip $ip6addr
|
|
json_add_string target ACCEPT
|
|
json_close_object
|
|
json_close_array
|
|
proto_close_data
|
|
|
|
proto_send_update "$cfg"
|
|
}
|
|
|
|
proto_464xlat_teardown() {
|
|
464xlatcfg "464-$1"
|
|
}
|
|
|
|
proto_464xlat_init_config() {
|
|
no_device=1
|
|
available=1
|
|
|
|
proto_config_add_string "ip6prefix"
|
|
proto_config_add_string "ip6addr"
|
|
proto_config_add_string "tunlink"
|
|
proto_config_add_string "zone"
|
|
}
|
|
|
|
[ -n "$INCLUDE_ONLY" ] || {
|
|
add_protocol 464xlat
|
|
}
|