[Bug 966] New: iptables can't change or drop or any effect on scapy packet!
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Wed Jul 16 23:09:36 CEST 2014
https://bugzilla.netfilter.org/show_bug.cgi?id=966
Summary: iptables can't change or drop or any effect on scapy
packet!
Product: iptables
Version: 1.4.x
Platform: All
OS/Version: Ubuntu
Status: NEW
Severity: major
Priority: P5
Component: iptables
AssignedTo: netfilter-buglog at lists.netfilter.org
ReportedBy: persianjambon at yahoo.com
Estimated Hours: 0.0
this is my commnad:
iptables -I OUTPUT -p udp -m udp --dport 53 -j DROP
and i create and send scapy packet:
sr1(IP(dst="4.2.2.4")/UDP()/DNS(rd=1,qd=DNSQR(qname="iranled.com")))
but iptable not DROP this packet!!!
OR:
this rule:
iptables -t nat -A OUTPUT -p udp -m udp --dport 53 -j DNAT --to-destination
8.8.8.8
and all scapy pcket hoing to 4.2.2.4
tcpdump output:
04:43:00.442453 IP 192.168.1.2.53 > 4.2.2.4.53: UDP, length 29
04:43:00.855930 IP 4.2.2.4.53 > 192.168.1.2.53: UDP, length 45
AND:
http://unix.stackexchange.com/questions/144729/iptables-rule-no-actions-on-scapy-packets
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
More information about the netfilter-buglog
mailing list