[Bug 616] Duplicate rules for multi-homed hostnames. IPv4 and IPv6 inconsistent treatment.
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Mon Jul 8 23:33:09 CEST 2013
https://bugzilla.netfilter.org/show_bug.cgi?id=616
--- Comment #4 from Phil Oester <netfilter at linuxace.com> 2013-07-08 23:33:07 CEST ---
As noted, #2 is solved already. Also, /128 will no longer print (commit
945353a2).
But your #1 makes little sense to me: discovery.razor.cloudmark.com/22. How
do you know that EVERY IP returned from a DNS lookup is always going to be a
/22 mask? What if they get assigned a new /24 net tomorrow, and add an IP from
that /24 to the DNS RR? Then your rule addition is no longer valid. What you
are attempting to do ultimately sounds like a bad idea, and not one that we
should hack around to support.
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
More information about the netfilter-buglog
mailing list