[Bug 1414] New: Using ip6 daddr in nat input chain is rejected with an incorrect error

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Thu Mar 26 01:16:49 CET 2020 

https://bugzilla.netfilter.org/show_bug.cgi?id=1414

            Bug ID: 1414
           Summary: Using ip6 daddr in nat input chain is rejected with an
                    incorrect error
           Product: nftables
           Version: unspecified
          Hardware: x86_64
                OS: Ubuntu
            Status: NEW
          Severity: normal
          Priority: P5
         Component: nft
          Assignee: pablo at netfilter.org
          Reporter: avamander at gmail.com

nft version: nftables v0.9.2 (Scram)

Example config:
```
table ip nat {
        chain input {
                type nat hook input priority 0;
                ip6 daddr ::1/128 accept;
        }
}
```

Error:
```
/etc/nftables.conf:186:3-11: Error: conflicting protocols specified: ip vs. ip6
                ip6 daddr ::1/128 accept;
                ^^^^^^^^^
```

It should output a reasonable error.

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200326/23a77668/attachment.html>

More information about the netfilter-buglog mailing list