summaryrefslogtreecommitdiffstats
path: root/net
diff options
context:
space:
mode:
authorPatrick McHardy <kaber@trash.net>2007-05-03 12:34:03 +0200
committerDavid S. Miller <davem@davemloft.net>2007-05-03 12:34:03 +0200
commit327850070b019a96853c533c152688546201c286 (patch)
treed1e42c5b3a751566569b9a7655605f08dcff1402 /net
parent[TCP]: Use S+L catcher only with SACK for now (diff)
downloadlinux-327850070b019a96853c533c152688546201c286.tar.xz
linux-327850070b019a96853c533c152688546201c286.zip
[NETFILTER]: ipt_DNAT: accept port randomization option
Also accept the --random option for DNAT to allow randomly selecting a destination port from the given range. Signed-off-by: Patrick McHardy <kaber@trash.net> Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'net')
-rw-r--r--net/ipv4/netfilter/nf_nat_rule.c4
1 files changed, 0 insertions, 4 deletions
diff --git a/net/ipv4/netfilter/nf_nat_rule.c b/net/ipv4/netfilter/nf_nat_rule.c
index 2a283397a8b6..2534f718ab92 100644
--- a/net/ipv4/netfilter/nf_nat_rule.c
+++ b/net/ipv4/netfilter/nf_nat_rule.c
@@ -226,10 +226,6 @@ static int ipt_dnat_checkentry(const char *tablename,
printk("DNAT: multiple ranges no longer supported\n");
return 0;
}
- if (mr->range[0].flags & IP_NAT_RANGE_PROTO_RANDOM) {
- printk("DNAT: port randomization not supported\n");
- return 0;
- }
return 1;
}