[Bug 1188] nft fails to parse own output; unable to save-restore active state

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Fri Oct 6 19:10:10 CEST 2017


https://bugzilla.netfilter.org/show_bug.cgi?id=1188

--- Comment #3 from Jeff Kletsky <netfilter at allycomm.com> ---
Adding 'flush ruleset' to the beginning of "ruleset.out" does not resolve the
issue

$ cat ruleset.out.flush-first
flush ruleset
table inet global {
    set blackhole_ipv6 {
        type ipv6_addr
        flags interval
        elements = { ::/96,
                 ::ffff:0.0.0.0/96,
                 2001::/32,
                 2001:10::/28,
                 2001:db8::/32,
                 2002::/16,
                 3ffe::/16,
                 5f00::/8,
                 fc00::/8 }
    }
}



$ sudo nft -f ruleset.out.flush-first
ruleset.out.flush-first:7:38-46: Error: syntax error, unexpected string,
expecting comma or '}'
                 ::ffff:0.0.0.0/96,
                                     ^^^^^^^^^
ruleset.out.flush-first:8:30-35: Error: syntax error, unexpected string
                 2001::/32,
                             ^^^^^^
ruleset.out.flush-first:9:30-38: Error: syntax error, unexpected string
                 2001:10::/28,
                             ^^^^^^^^^
ruleset.out.flush-first:10:30-39: Error: syntax error, unexpected string
                 2001:db8::/32,
                             ^^^^^^^^^^
ruleset.out.flush-first:11:30-35: Error: syntax error, unexpected string
                 2002::/16,
                             ^^^^^^
ruleset.out.flush-first:12:30-35: Error: syntax error, unexpected string
                 3ffe::/16,
                             ^^^^^^
ruleset.out.flush-first:13:30-35: Error: syntax error, unexpected string
                 5f00::/8,
                             ^^^^^^
ruleset.out.flush-first:14:30-35: Error: syntax error, unexpected string
                 fc00::/8 }
                             ^^^^^^

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20171006/b01e6015/attachment-0001.html>


More information about the netfilter-buglog mailing list