Révision 3a469f2b
Implement nftables::simplerule::saddr
| templates/simplerule.epp | ||
|---|---|---|
| 5 | 5 |
Optional[Variant[Stdlib::IP::Address::V6, Stdlib::IP::Address::V4, Pattern[/^@[-a-zA-Z0-9_]+$/]]] $daddr, |
| 6 | 6 |
Enum['ip', 'ip6'] $set_type, |
| 7 | 7 |
Optional[Variant[Array[Stdlib::Port, 1], Stdlib::Port, String]] $sport, |
| 8 |
Optional[Variant[Stdlib::IP::Address::V6, Stdlib::IP::Address::V4, Pattern[/^@[-a-zA-Z0-9_]+$/]]] $saddr, |
|
| 8 | 9 |
Boolean $counter, |
| 9 | 10 |
| -%> |
| 10 | 11 |
<%- if $proto {
|
| ... | ... | |
| 34 | 35 |
} else {
|
| 35 | 36 |
$_dst_hosts = undef |
| 36 | 37 |
} -%> |
| 38 |
<%- if $saddr {
|
|
| 39 |
if $saddr =~ Stdlib::IP::Address::V6 {
|
|
| 40 |
$_src_hosts = "ip6 saddr ${saddr}"
|
|
| 41 |
} elsif $daddr =~ Stdlib::IP::Address::V4 {
|
|
| 42 |
$_src_hosts = "ip saddr ${saddr}"
|
|
| 43 |
} else {
|
|
| 44 |
$_src_hosts = $set_type ? {
|
|
| 45 |
'ip' => "ip saddr ${saddr}",
|
|
| 46 |
'ip6' => "ip6 saddr ${saddr}",
|
|
| 47 |
} |
|
| 48 |
} |
|
| 49 |
} else {
|
|
| 50 |
$_src_hosts = undef |
|
| 51 |
} -%> |
|
| 37 | 52 |
<%- if $proto and $dport {
|
| 38 | 53 |
$_dst_port = "${_proto} dport {${Array($dport, true).join(', ')}}"
|
| 39 | 54 |
} else {
|
| ... | ... | |
| 54 | 69 |
} else {
|
| 55 | 70 |
$_counter = undef |
| 56 | 71 |
} -%> |
| 57 |
<%= regsubst(strip([$_ip_version_filter, $_src_port, $_dst_port, $_dst_hosts, $_counter, $action, $_comment].join(' ')), '\s+', ' ', 'G') -%>
|
|
| 72 |
<%= regsubst(strip([$_ip_version_filter, $_src_port, $_dst_port, $_src_hosts, $_dst_hosts, $_counter, $action, $_comment].join(' ')), '\s+', ' ', 'G') -%>
|
|
Formats disponibles : Unified diff