ip6tables: accept of IPv6 transport esp packages not possible
- no rule matches
Patrick McHardy
kaber at trash.net
Sat Dec 25 16:46:23 CET 2004
Peter Bieringer wrote:
> Looks like there is something going wrong in the protocol matching
> algorithm in netfilter6.
Does this patch fix the problem ?
Regards
Patrick
-------------- next part --------------
===== net/ipv6/netfilter/ip6_tables.c 1.34 vs edited =====
--- 1.34/net/ipv6/netfilter/ip6_tables.c 2004-11-10 01:44:26 +01:00
+++ edited/net/ipv6/netfilter/ip6_tables.c 2004-12-25 16:42:21 +01:00
@@ -234,7 +234,7 @@
* we will change the return 0 to 1*/
if ((currenthdr == IPPROTO_NONE) ||
(currenthdr == IPPROTO_ESP))
- return 0;
+ break;
hp = skb_header_pointer(skb, ptr, sizeof(_hdr), &_hdr);
BUG_ON(hp == NULL);
More information about the netfilter-devel
mailing list