[Bug 1719] ipset wrongly blocking undefined ranges and not blocking ranges that are defined
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Wed Oct 25 14:50:15 CEST 2023
https://bugzilla.netfilter.org/show_bug.cgi?id=1719
--- Comment #3 from Jozsef Kadlecsik <kadlec at netfilter.org> ---
You have a mistypeing in your set:
add blacklist 103.24.200.0/2
is equivalent with
add blacklist 64.0.0.0/2
and it explains the "ghost" matches.
In my test environment loading in your set definiton, I get
# ipset t blacklist 203.55.21.150
Warning: 203.55.21.150 is in set blacklist.
Please verify your set content.
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20231025/f737c3e1/attachment.html>
More information about the netfilter-buglog
mailing list