bugzilla-daemon at netfilter.org
2019-May-09 12:55 UTC
[Bug 1337] New: NETMAP feature, using a displaced mask fail.
https://bugzilla.netfilter.org/show_bug.cgi?id=1337 Bug ID: 1337 Summary: NETMAP feature, using a displaced mask fail. Product: iptables Version: unspecified Hardware: All OS: All Status: NEW Severity: normal Priority: P5 Component: iptables Assignee: netfilter-buglog at lists.netfilter.org Reporter: gperezbrun at gmail.com Members: I am trying to map displaced masks. In particular, this example. Original destination Subnets. FROM 10.10.0.232/29 00001010.00001010.00000000.11101 000 TO 10.10.255.232/29 00001010.00001010.11111111.11101 000 MASK 255.255.0.248 11111111.11111111.00000000.11111 000 Translated destination Subnets. FROM 172.28.0.0/29 10101100.00011100.00000000.00000 000 TO 172.28.7.248/29 10101100.00011100.00000111.11111 000 MASK 255.255.248.0 11111111.11111111.11111000.00000 000 So, to achive that I run: # iptables -t nat -A PREROUTING -d 172.28.0.0/29 -j NETMAP --to 10.10.0.232/255.255.0.248 But IPTABLES shows another destination MASK: # iptables -t nat -L -nv Chain PREROUTING (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 0 0 NETMAP all -- * * 0.0.0.0/0 172.28.0.0/29 10.10.0.232/32 This was run on many linux distros with same result. Can somebody help me with this? It's the correct behavior? Thanks a lot for your time and sorry about my english. Regards. -- You are receiving this mail because: You are watching all bug changes. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20190509/e05a8f4f/attachment.html>
Possibly Parallel Threads
- [Bug 1339] New: NETMAP feature, using a displaced mask fail.
- Anyone want to test NETMAP?
- [Bug 1070] New: NETMAP "to" address is not separated from previous output while listing NAT rules
- netmap feature request
- Question on sNAT for multiple external subnets