bugzilla-daemon at netfilter.org
2017-Jun-29 02:21 UTC
[Bug 1160] New: dnat ip address not shown in nft list output when using port value
https://bugzilla.netfilter.org/show_bug.cgi?id=1160
Bug ID: 1160
Summary: dnat ip address not shown in nft list output when
using port value
Product: nftables
Version: unspecified
Hardware: x86_64
OS: Fedora
Status: NEW
Severity: normal
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
Reporter: zing at fastmail.fm
I've a got a dnat rule inserted like this:
# nft add rule tcpproxy preproxy tcp dport 500 meta mark set 0x1 dnat to
107.14.73.68:25
However, when I list it the dnat ip address is not shown (only the port):
# nft list chain tcpproxy preproxy
table ip tcpproxy {
chain preproxy {
type nat hook prerouting priority -150; policy accept;
tcp dport isakmp mark set 0x00000001 dnat to :smtp
}
}
It seems to work ok, but you can't find out what the rule actually once
it's
inserted.
# nft --version
nftables v0.7 (Scrooge McDuck)
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20170629/efabb4d4/attachment.html>
bugzilla-daemon at netfilter.org
2017-Jul-07 10:55 UTC
[Bug 1160] dnat ip address not shown in nft list output when using port value
https://bugzilla.netfilter.org/show_bug.cgi?id=1160
Pablo Neira Ayuso <pablo at netfilter.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution|--- |FIXED
--- Comment #1 from Pablo Neira Ayuso <pablo at netfilter.org> ---
Fixed upstream, thanks for reporting. We're releasing nft 0.8 soon
containing a
bugfix for this.
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20170707/3e0e4ba8/attachment.html>
Seemingly Similar Threads
- [Bug 1329] New: flush set not working: "Could not process rule: Invalid argument"
- [Bug 1168] New: type nat hook output doesn't work anymore
- [Bug 1187] New: SIGABRT: "BUG: unknown expression type prefix"
- [Bug 1233] New: Problem with import of small iptables rule sets with multiport match
- [Bug 1155] New: arp forward filter doesn't work