[Bug 1145] nft 0.7: expression.c:966: range_expr_value_low: Assertion '0' failed.
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Sun Jun 18 12:12:42 CEST 2017
https://bugzilla.netfilter.org/show_bug.cgi?id=1145
--- Comment #5 from Pablo Neira Ayuso <pablo at netfilter.org> ---
[...]
> > rc.nftables-test:83:17-77: Error: Could not process rule: Operation not supported
> > iifname $inet_interface tcp dport $dnat_ports dnat $dnat_host
>
> Interesting, I have got this to not give me errors, but yes, it's wrong =)
>
> I do however run this with a script that has nft -f at the beginning and I
> don't get the same error messages that you get... So I hope that you have a
> newer version ;)
:)
Yes, newer version is going to provide better error messages. If you want to
give a try to libnftnl and nftables git clones, you can help us test most
recent changes.
Side note: In the midrun we could even provide better ones, more fine grain
even, pointing to the specific part of the rule that triggers the error.
BTW, we still need to have a look at the bug you're hitting with the nested set
definitions, that should work indeed, will get back to you with some feedback
asap.
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20170618/bcf61167/attachment.html>
More information about the netfilter-buglog
mailing list