bugzilla-daemon@bugzilla.netfilter.org
2007-May-26 17:50 UTC
[Bug 570] New: PREROUTING is unaware of VLAN interfaces
https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=570
Summary: PREROUTING is unaware of VLAN interfaces
Product: netfilter/iptables
Version: linux-2.6.x
Platform: i386
OS/Version: Fedora
Status: NEW
Severity: normal
Priority: P2
Component: ip_tables (kernel)
AssignedTo: laforge@netfilter.org
ReportedBy: rolf.fokkens@wanadoo.nl
When forwarding packets from a VLAN interface (e.g. br1.25) to another (e.g.
br0) the PREROUTING is unaware of VLAN interfaces as shown by the following
syslog entries:
mangle-prerouting:IN=br1 OUT= PHYSIN=eth1 MAC=... SRC=192.168.25.2 DST=81.18.1.1
LEN=84 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=ICMP TYPE=8 CODE=0 ID=13574 SEQ=2
nat-prerouting:IN=br1 OUT= PHYSIN=eth1 MAC=... SRC=192.168.25.2 DST=81.18.1.1
LEN=84 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=ICMP TYPE=8 CODE=0 ID=13574 SEQ=2
mangle-forward:IN=br1.25 OUT=br0 PHYSIN=eth1 SRC=192.168.25.2 DST=81.18.1.1
LEN=84 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=ICMP TYPE=8 CODE=0 ID=13574 SEQ=2
The above logging is the result of:
iptables -t nat -I PREROUTING -j LOG --log-prefix "nat-prerouting:"
iptables -t mangle -I PREROUTING -j LOG --log-prefix
"mangle-prerouting:"
iptables -t mangle -I FORWARD -j LOG --log-prefix "mangle-forward:"
Fedora kernel is 2.6.20-1.2948.fc6
--
Configure bugmail:
https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.