svn commit: r359708 - in stable/11: share/man/man4 sys/netgraph

[Eugene Grosbein]

Author: eugen
Date: Tue Apr  7 17:50:18 2020
New Revision: 359708
URL: https://svnweb.freebsd.org/changeset/base/359708

Log:
  MFC r357053 by markj: ng_nat: Pass IPv6 packets through.
  
  ng_nat implements NAT for IPv4 traffic only.  When connected to an
  ng_ether node it erroneously handled IPv6 packets as well.
  
  This change is not sufficient: ng_nat does not do any validation of IP
  packets in this mode, even though they have not yet passed through
  ip_input().
  
  PR:		243096
  Reported by:	Robert James Hernandez <rob at sarcasticadmin.com>
  Reviewed by:	julian
  Differential Revision:	https://reviews.freebsd.org/D23080

Modified:
  stable/11/share/man/man4/ng_nat.4
  stable/11/sys/netgraph/ng_nat.c
Directory Properties:
  stable/11/   (props changed)

Modified: stable/11/share/man/man4/ng_nat.4
==============================================================================
--- stable/11/share/man/man4/ng_nat.4	Tue Apr  7 17:49:36 2020	(r359707)
+++ stable/11/share/man/man4/ng_nat.4	Tue Apr  7 17:50:18 2020	(r359708)
@@ -35,7 +35,7 @@
 .Sh DESCRIPTION
 An
 .Nm
-node performs network address translation (NAT) of packets
+node performs network address translation (NAT) of IPv4 packets
 passing through it.
 A
 .Nm nat

Modified: stable/11/sys/netgraph/ng_nat.c
==============================================================================
--- stable/11/sys/netgraph/ng_nat.c	Tue Apr  7 17:49:36 2020	(r359707)
+++ stable/11/sys/netgraph/ng_nat.c	Tue Apr  7 17:50:18 2020	(r359708)
@@ -793,7 +793,6 @@ ng_nat_rcvdata(hook_p hook, item_p item )
 		eh = mtod(m, struct ether_header *);
 		switch (ntohs(eh->ether_type)) {
 		case ETHERTYPE_IP:
-		case ETHERTYPE_IPV6:
 			ipofs = sizeof(struct ether_header);
 			break;
 		default: