[Bug 1338] Can't add IPv6 concatenation rule
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Mon May 20 20:28:07 CEST 2019
https://bugzilla.netfilter.org/show_bug.cgi?id=1338
--- Comment #1 from abrian at netapp.com ---
Adding debug=netlink output:
nft add rule inet filter input ip6 saddr . udp dport
[fd20:332:332:0:250:56ff:fe87:f635] . 1662 counter accept --debug=netlink
inet filter input
[ meta load nfproto => reg 1 ]
[ cmp eq reg 1 0x0000000a ]
[ payload load 1b @ network header + 6 => reg 1 ]
[ cmp eq reg 1 0x00000011 ]
[ payload load 16b @ network header + 8 => reg 1 ]
[ payload load 2b @ transport header + 2 => reg 2 ]
[ cmp eq reg 1 0x320320fd 0x00003203 0xff565002 0x35f687fe 0x00007e06 ]
[ counter pkts 0 bytes 0 ]
[ immediate reg 0 accept ]
<cmdline>:1:1-114: Error: Could not process rule: Value too large for defined
data type
add rule inet filter input ip6 saddr . udp dport
[fd20:332:332:0:250:56ff:fe87:f635] . 1662 counter accept
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20190520/e87344f8/attachment.html>
More information about the netfilter-buglog
mailing list