Filtering TCP over IPv6 does not work :(
Philip Blundell
pb@tazenda.demon.co.uk
Mon, 24 Jul 2000 16:06:00 +0100
>Yeah, sorry, that was typo. I tried --dport on input, --sport on output,
>ip6tables happily accepted the rule, but thought that no packet
>matched it :(
Uh, try this patch. (I've checked this in at vger already.)
Sorry.
p.
Index: ip6_tables.c
===================================================================
RCS file: /cvs/linux/net/ipv6/netfilter/ip6_tables.c,v
retrieving revision 1.2
diff -u -p -u -r1.2 ip6_tables.c
--- ip6_tables.c 2000/06/03 19:40:43 1.2
+++ ip6_tables.c 2000/07/24 15:12:16
@@ -314,7 +314,7 @@ ip6t_do_table(struct sk_buff **pskb,
/* Initialization */
ipv6 = (*pskb)->nh.ipv6h;
- protohdr = (u_int32_t *)ipv6 + IPV6_HDR_LEN;
+ protohdr = (u_int32_t *)((char *)ipv6 + IPV6_HDR_LEN);
datalen = (*pskb)->len - IPV6_HDR_LEN;
indev = in ? in->name : nulldevname;
outdev = out ? out->name : nulldevname;