[Bug 1160] New: dnat ip address not shown in nft list output when using port value

Thu Jun 29 04:21:33 CEST 2017

https://bugzilla.netfilter.org/show_bug.cgi?id=1160

            Bug ID: 1160
           Summary: dnat ip address not shown in nft list output when
                    using port value
           Product: nftables
           Version: unspecified
          Hardware: x86_64
                OS: Fedora
            Status: NEW
          Severity: normal
          Priority: P5
         Component: nft
          Assignee: pablo at netfilter.org
          Reporter: zing at fastmail.fm

I've a got a dnat rule inserted like this:

# nft add rule tcpproxy preproxy tcp dport 500 meta mark set 0x1 dnat to
107.14.73.68:25

However, when I list it the dnat ip address is not shown (only the port):

# nft list chain tcpproxy preproxy
table ip tcpproxy {
    chain preproxy {
        type nat hook prerouting priority -150; policy accept;
        tcp dport isakmp mark set 0x00000001 dnat to :smtp
    }
}

It seems to work ok, but you can't find out what the rule actually once it's
inserted.

# nft --version
nftables v0.7 (Scrooge McDuck)

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20170629/efabb4d4/attachment.html>