NAT44: allow to configure one interface only as output or input feature (VPP-1192)

author Matus Fabian <[email protected]>

Wed, 7 Mar 2018 11:17:57 +0000 (03:17 -0800)

committer Damjan Marion <[email protected]>

Wed, 14 Mar 2018 16:41:24 +0000 (16:41 +0000)
author Matus Fabian <[email protected]>
Wed, 7 Mar 2018 11:17:57 +0000 (03:17 -0800)
committer Damjan Marion <[email protected]>
Wed, 14 Mar 2018 16:41:24 +0000 (16:41 +0000)
diff --git a/src/plugins/nat/nat.c b/src/plugins/nat/nat.c

index 1ba3b37..a3a104f 100644 (file)
--- a/src/plugins/nat/nat.c
+++ b/src/plugins/nat/nat.c
@@ -1351,6 +1351,12 @@ int snat_interface_add_del (u32 sw_if_index, u8 is_inside, int is_del)
    snat_static_mapping_t * m;
    snat_det_map_t * dm;
  
+  pool_foreach (i, sm->output_feature_interfaces,
+  ({
+    if (i->sw_if_index == sw_if_index)
+      return VNET_API_ERROR_VALUE_EXIST;
+  }));
+
    if (sm->static_mapping_only && !(sm->static_mapping_connection_tracking))
      feature_name = is_inside ?  "nat44-in2out-fast" : "nat44-out2in-fast";
    else
@@ -1491,6 +1497,12 @@ int snat_interface_add_del_output_feature (u32 sw_if_index,
        (sm->static_mapping_only && !(sm->static_mapping_connection_tracking)))
      return VNET_API_ERROR_UNSUPPORTED;
  
+  pool_foreach (i, sm->interfaces,
+  ({
+    if (i->sw_if_index == sw_if_index)
+      return VNET_API_ERROR_VALUE_EXIST;
+  }));
+
    if (is_inside)
      {
        vnet_feature_enable_disable ("ip4-unicast", "nat44-hairpin-dst",
author	Matus Fabian <[email protected]>
	Wed, 7 Mar 2018 11:17:57 +0000 (03:17 -0800)
committer	Damjan Marion <[email protected]>
	Wed, 14 Mar 2018 16:41:24 +0000 (16:41 +0000)