[Bug 1116] New: Can't create Ipv6 NAT entries with conntrack

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Thu Feb 2 21:57:49 CET 2017


            Bug ID: 1116
           Summary: Can't create Ipv6 NAT entries with conntrack
           Product: conntrack-tools
           Version: unspecified
          Hardware: All
                OS: All
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: conntrack
          Assignee: netfilter-buglog at lists.netfilter.org
          Reporter: neil at aldur.co.uk

The conntrack tool doesn't appear to be able to create IPv6 NAT entries.

# conntrack -I --proto 6 --timeout 431994 --state ESTABLISHED --orig-src
2002:4f4a:ef7f:0000:50c5:4e4c:fb6c:5fce --orig-dst
2a02:1348:ffff:ffff:0000:0000:6d6b:275c --orig-port-src 59366 --orig-port-dst
22 --status ASSURED --dst-nat 2a02:1348:0178:73d1:0024:19ff:fee1:cf46
conntrack v1.4.3 (conntrack-tools): mismatched address family
Try `conntrack -h' or 'conntrack --help' for more information.

The same command with ipv4 addresses works fine. 

The dst-nat facility could do with following the parse rules for ip6tables
(i.e. in square brackets if there is a port redirection).

You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20170202/fa84e501/attachment.html>

More information about the netfilter-buglog mailing list