bugzilla-daemon at netfilter.org
2020-Jan-15 15:31 UTC
[Bug 1397] New: What am I doing wrong!?
https://bugzilla.netfilter.org/show_bug.cgi?id=1397
Bug ID: 1397
Summary: What am I doing wrong!?
Product: nftables
Version: unspecified
Hardware: x86_64
OS: other
Status: NEW
Severity: normal
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
Reporter: tad1073 at gmail.com
code snippet
table inet nat {
chain prerouting {
type nat hook prerouting priority dstnat; policy accept;
fib saddr . iif oif 0 counter drop
fib saddr . iif oif "lo" counter accept
fib saddr . iif oif "$inet_if" counter accept
fib daddr . iif type { local, broadcast, multicast } counter accept
ip daddr 10.0.0.11 tcp dport 80 dnat to 8080
ip daddr 10.0.0.11 udp dport 80 dnat to 8080
ip daddr 10.0.0.11 tcp dport 80 redirect to 8080
ip daddr 10.0.0.11 udp dport 80 redirect to 8080
ip6 daddr 2601:c3:8000:6680::11 tcp dport 80 dnat to 8080
ip6 daddr 2601:c3:8000:6680::11 udp dport 80 dnat to 8080
ip6 daddr 2601:c3:8000:6680::11 tcp dport 80 redirect to 8080
ip6 daddr 2601:c3:8000:6680::11 udp dport 80 redirect to 8080
counter accept
}
$ sudo nft -c -f nat.nft
nat.nft:14:56-59: Error: Could not resolve hostname: Address family for
hostname not supported
ip6 daddr 2601:c3:8000:6680::11 tcp dport 80 dnat to 8080
^^^^
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200115/f7ae6602/attachment.html>
https://bugzilla.netfilter.org/show_bug.cgi?id=1397 --- Comment #1 from Thomas <tad1073 at gmail.com> --- How the fuck do i edit my god damn bug report!?!?!?!?! -- You are receiving this mail because: You are watching all bug changes. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200115/e42384af/attachment.html>
https://bugzilla.netfilter.org/show_bug.cgi?id=1397 --- Comment #2 from Thomas <tad1073 at gmail.com> --- Now every one in the god dam form had my fucking ip address!!!! -- You are receiving this mail because: You are watching all bug changes. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200115/31e1eb88/attachment.html>
https://bugzilla.netfilter.org/show_bug.cgi?id=1397
Pablo Neira Ayuso <pablo at netfilter.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |ASSIGNED
--- Comment #3 from Pablo Neira Ayuso <pablo at netfilter.org>
---> $ sudo nft -c -f nat.nft
> nat.nft:14:56-59: Error: Could not resolve hostname: Address family for
> hostname not supported
> ip6 daddr 2601:c3:8000:6680::11 tcp dport 80 dnat to 8080
> ^^^^
nft add rule ip6 x y ip6 daddr 2601:c3:8000:6680::11 tcp dport 80 dnat to :8080
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200115/de674c79/attachment.html>
https://bugzilla.netfilter.org/show_bug.cgi?id=1397
Pablo Neira Ayuso <pablo at netfilter.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Resolution|--- |WONTFIX
Status|ASSIGNED |RESOLVED
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200415/1bc8816c/attachment-0001.html>
Possibly Parallel Threads
- [Bug 1371] New: Concatenations Literal sets
- [Bug 1742] New: using nfqueue breaks SCTP connection (tracking)
- [Bug 1368] New: The "meta's"
- [Bug 1761] New: nft_fib checks only the main route table when iif is a slave of a master vrf interface
- [Bug 1370] New: iptables-restore-translate