netfilter: nf_flow_table: fix offloading connections with SNAT+DNAT

Pass all NAT types to the flow offload struct, otherwise parts of the address/port pair do not get translated properly, causing connection stalls Signed-off-by: N Felix Fietkau <nbd@nbd.name> Signed-off-by: N Pablo Neira Ayuso <pablo@netfilter.org>

netfilter: nf_flow_table: fix offloading connections with SNAT+DNAT
Pass all NAT types to the flow offload struct, otherwise parts of the address/port pair do not get translated properly, causing connection stalls Signed-off-by: N Felix Fietkau <nbd@nbd.name> Signed-off-by: N Pablo Neira Ayuso <pablo@netfilter.org>
df1e2025 · Felix Fietkau · Pablo Neira Ayuso · 33894c36 · df1e2025
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

net/netfilter/nf_flow_table_core.c net/netfilter/nf_flow_table_core.c +1 -1

未找到文件。
--- a/net/netfilter/nf_flow_table_core.c
+++ b/net/netfilter/nf_flow_table_core.c
@@ -84,7 +84,7 @@ flow_offload_alloc(struct nf_conn *ct, struct nf_flow_route *route)
 	if (ct->status & IPS_SRC_NAT)
 		flow->flags |= FLOW_OFFLOAD_SNAT;
-	else if (ct->status & IPS_DST_NAT)
+	if (ct->status & IPS_DST_NAT)
 		flow->flags |= FLOW_OFFLOAD_DNAT;
 	return flow;