[Bug 842] Addition of iptables rule referencing an ipset of the wrong address family does not fail

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Sat Aug 17 22:06:05 CEST 2013


https://bugzilla.netfilter.org/show_bug.cgi?id=842

--- Comment #4 from Quentin Armitage <quentin at armitage.org.uk> 2013-08-17 22:06:04 CEST ---
(In reply to comment #3)
> I have checked the iptables source tree: for family-independent matches/targets
> the actual family is not passed to the match/target functions. So the functions
> cannot know whether iptables or ip6tables called them. The issue cannot be
> fixed without iptables core modifications.

I don't think its worth a great deal of hassle about this from a coding
perspective, but it might be worth making mention of this in an appropriate man
page so users are aware that some things they can do won't work.

-- 
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.



More information about the netfilter-buglog mailing list