Displaying 1 result from an estimated 1 matches for "linuxinfotag".
2009 Feb 16
2
[Bug 577] New: cannot set spi/reqid numbers higher than 0x7fffffff (policy match)
...olicy match)
Product: iptables
Version: unspecified
Platform: i386
OS/Version: All
Status: NEW
Severity: normal
Priority: P1
Component: iptables
AssignedTo: laforge at netfilter.org
ReportedBy: chris at linuxinfotag.de
When using the -m policy match, the option argument for --spi is converted
using strtol(), which returns a signed 32 bit value, so the highest
positive value is 0x7fffffff. Instead strtoul() should be used.
The same applies for the --reqid option argument.
Setting a rule like
iptables -A FORW...