From a27086f3bc36022627a2cc280dc0f0ea153db567 Mon Sep 17 00:00:00 2001
From: "William A. Kennington III" <wak@google.com>
Date: Wed, 19 Jan 2022 09:57:22 -0800
Subject: meta-google: gbmc-ncsi-config: Fix broadcast rules

Distinguish between broadcast only packets and broadcast + unicast
packets.

Change-Id: I52f7969ccd00e4142d5585a37b92cc5530b76dec
Signed-off-by: William A. Kennington III <wak@google.com>
---
 meta-google/recipes-google/ncsi/files/50-gbmc-ncsi.rules.in | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

(limited to 'meta-google')

diff --git a/meta-google/recipes-google/ncsi/files/50-gbmc-ncsi.rules.in b/meta-google/recipes-google/ncsi/files/50-gbmc-ncsi.rules.in
index e2ade6e5bc..303dbca8c7 100644
--- a/meta-google/recipes-google/ncsi/files/50-gbmc-ncsi.rules.in
+++ b/meta-google/recipes-google/ncsi/files/50-gbmc-ncsi.rules.in
@@ -14,13 +14,16 @@ table inet filter {
     chain gbmc_br_pub_input {
     }
     chain ncsi_legacy_input {
-        jump ncsi_brd_input
+        jump ncsi_any_input
         tcp dport 3959 accept
         udp dport 3959 accept
         tcp dport 3967 accept
         udp dport 3967 accept
     }
     chain ncsi_brd_input {
+        jump ncsi_any_input
+    }
+    chain ncsi_any_input {
         icmpv6 type nd-neighbor-advert accept
         icmpv6 type nd-neighbor-solicit accept
         icmpv6 type nd-router-advert accept
-- 
cgit v1.2.3