diff options
Diffstat (limited to 'net/ipv4')
| -rw-r--r-- | net/ipv4/netfilter/nf_nat_core.c | 9 |
1 files changed, 2 insertions, 7 deletions
diff --git a/net/ipv4/netfilter/nf_nat_core.c b/net/ipv4/netfilter/nf_nat_core.c index c7719b283ad..037a3a65993 100644 --- a/net/ipv4/netfilter/nf_nat_core.c +++ b/net/ipv4/netfilter/nf_nat_core.c | |||
| @@ -261,14 +261,9 @@ get_unique_tuple(struct nf_conntrack_tuple *tuple, | |||
| 261 | rcu_read_lock(); | 261 | rcu_read_lock(); |
| 262 | proto = __nf_nat_proto_find(orig_tuple->dst.protonum); | 262 | proto = __nf_nat_proto_find(orig_tuple->dst.protonum); |
| 263 | 263 | ||
| 264 | /* Change protocol info to have some randomization */ | ||
| 265 | if (range->flags & IP_NAT_RANGE_PROTO_RANDOM) { | ||
| 266 | proto->unique_tuple(tuple, range, maniptype, ct); | ||
| 267 | goto out; | ||
| 268 | } | ||
| 269 | |||
| 270 | /* Only bother mapping if it's not already in range and unique */ | 264 | /* Only bother mapping if it's not already in range and unique */ |
| 271 | if ((!(range->flags & IP_NAT_RANGE_PROTO_SPECIFIED) || | 265 | if (!(range->flags & IP_NAT_RANGE_PROTO_RANDOM) && |
| 266 | (!(range->flags & IP_NAT_RANGE_PROTO_SPECIFIED) || | ||
| 272 | proto->in_range(tuple, maniptype, &range->min, &range->max)) && | 267 | proto->in_range(tuple, maniptype, &range->min, &range->max)) && |
| 273 | !nf_nat_used_tuple(tuple, ct)) | 268 | !nf_nat_used_tuple(tuple, ct)) |
| 274 | goto out; | 269 | goto out; |