[Bug 1730] nft does not handle IPv6 addresses with embedded IPv4 addresses
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Sun Jan 7 00:53:19 CET 2024
https://bugzilla.netfilter.org/show_bug.cgi?id=1730
--- Comment #2 from Antonio Ojea <antonio.ojea.garcia at gmail.com> ---
::ffff:10.0.0.1 is a IPv4-Mapped IPv6 Address
https://datatracker.ietf.org/doc/html/rfc4291#section-2.5.5.2
That is well defined, try with fd00::10.0.0.1/128
It seems that Section 5 in rfc5952 leaves the representation using mixed
notation open so theoretically it should be possible
https://datatracker.ietf.org/doc/html/rfc5952#section-5
This is an edge case, but for compatibility reasons, I think that all the
representations that work with iptables user space tools should be allowed to
work with the nftables one, so migration and portability is simpler for end
users and consumers
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20240106/b9eecf32/attachment.html>
More information about the netfilter-buglog
mailing list