bugzilla-daemon at bugzilla.netfilter.org
2011-Sep-05 02:49 UTC
[Bug 745] New: [addrtype]addrtype can't match src-type BROADCAST packets
http://bugzilla.netfilter.org/show_bug.cgi?id=745 Summary: [addrtype]addrtype can't match src-type BROADCAST packets Product: netfilter/iptables Version: linux-2.6.x Platform: mips64 OS/Version: Debian GNU/Linux Status: NEW Severity: major Priority: P5 Component: ip_tables (kernel) AssignedTo: netfilter-buglog at lists.netfilter.org ReportedBy: wensy1009 at sina.com Estimated Hours: 0.0 why netfilter can't match addrtype src-type is BROADCAST packets,but can filter match addrtype dst-type BROADCAST packets? when I send packet source ip 1.1.1.1 dest ip 3.3.3.255 it can filter the pkts,but when I send packet source ip 1.1.1.255 dest ip 3.3.3.2 it can't drop packets. my ip is 1.1.1.1/24. Need ur help!!!Thanks a lot~! iptables -L -v -n Chain INPUT (policy ACCEPT 0 packets, 0 bytes) pkts bytes target port opt in out source destination 3698 170K smurf icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmp type 8 3698 170K icmp_flood icmp -- * * 0.0.0.0/0 0.0.0.0/0 Chain icmp_flood(1 references) pkts bytes target port opt in out source destination 1858 85468 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 limit: avg 10/sec burst 10 1840 84640 DROP icmp -- * * 0.0.0.0/0 0.0.0.0/0 Chain smurf (1 references) pkts bytes target port opt in out source destination 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match src-type BROADCAST 131 6026 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST -- Configure bugmail: http://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are watching all bug changes.
bugzilla-daemon at bugzilla.netfilter.org
2011-Sep-08 14:49 UTC
[Bug 745] [addrtype]addrtype can't match src-type BROADCAST packets
http://bugzilla.netfilter.org/show_bug.cgi?id=745 Jan Engelhardt <jengelh at medozas.de> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |jengelh at medozas.de AssignedTo|netfilter- |jengelh at medozas.de |buglog at lists.netfilter.org | -- Configure bugmail: http://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are watching all bug changes.
Reasonably Related Threads
- [Bug 728] New: ip_tables: limit match: invalid size 40!=48
- [Bug 745] [addrtype]addrtype can't match src-type BROADCAST packets
- [Bug 812] New: addrtype with limit-iface-in in ip6tables/nat/PREROUTING messes up the route cache
- [Bug 812] addrtype with limit-iface-in in ip6tables/nat/PREROUTING messes up the route cache
- [Bug 812] addrtype with limit-iface-in in ip6tables/nat/PREROUTING messes up the route cache