netfilter buglog - Aug 2013 - [Bug 849] New: 172.245.13.X doesn't appear properly in output of iptables -L

https://bugzilla.netfilter.org/show_bug.cgi?id=849

           Summary: 172.245.13.X doesn't appear properly in output of
                    iptables -L
           Product: iptables
           Version: 1.4.x
          Platform: x86_64
        OS/Version: Debian GNU/Linux
            Status: NEW
          Severity: minor
          Priority: P5
         Component: iptables
        AssignedTo: netfilter-buglog at lists.netfilter.org
        ReportedBy: jtbock at mailzone.com
   Estimated Hours: 0.0


Tried to dynamically add 172.245.13.130 to my list via "iptables -I INPUT
-s
"172.245.13.130" -j DROP", and the command appeared to work fine.
But then
when I tried to verify via "iptables -L", the rule shows up with only
a "." in
the source field.  The fourth octet can be anything; same result.  If the
first, second, or third octet varies, then the result of iptables -L is as
expected.  But something like 172.245.13.0/24 shows up in iptables -L as
"./24"

This was initially disconcerting, as it seemed the block I was trying to drop
was not being accepted.  However, it appears to be a display problem only. 
When I did an iptables-save, the rule appeared in the output as it was entered.

I tried this on multiple machines (CentOS, RedHat, Ubuntu, Debian) of varying
OS vintages, and on x86_64 and i386. It was reproducible on all of them.  The
most recent is the latest Debian (7.0.0) with iptables v1.4.14.

Hope I'm not missing something obvious.

Thank you,
Tim

-- 
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.

https://bugzilla.netfilter.org/show_bug.cgi?id=849

Phil Oester <netfilter at linuxace.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
                 CC|                            |netfilter at linuxace.com
         Resolution|                            |INVALID

--- Comment #1 from Phil Oester <netfilter at linuxace.com> 2013-08-29
13:34:44 CEST ---
(In reply to comment #0)
> Hope I'm not missing something obvious.
You are: the admin has set reverse DNS for this host to "."

# host 172.245.13.130
130.13.245.172.in-addr.arpa domain name pointer .

If you'd prefer seeing the IP instead of garbage reverse DNS entries, try
using
"iptables -nvL"

Closing.

-- 
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.

https://bugzilla.netfilter.org/show_bug.cgi?id=849

--- Comment #2 from jtbock at mailzone.com 2013-08-29 14:30:54 CEST ---
(In reply to comment #1)
> (In reply to comment #0)
> > Hope I'm not missing something obvious.
> 
> You are: the admin has set reverse DNS for this host to "."
> 
> # host 172.245.13.130
> 130.13.245.172.in-addr.arpa domain name pointer .
> 
> If you'd prefer seeing the IP instead of garbage reverse DNS entries,
try using
> "iptables -nvL"
> 
> Closing.
Ok, thanks.  Sorry for the noise...

-- 
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.