Package: iptables Version: 1.3.1-2 I just updated to the mentioned version of iptables. The file below causes ip6tables-restore < <file> to segfault. I'd expect a more descriptive error message like '..error on line...' The kernel is 2.6.12. The last known working version of iptables was 1.2.9.
Bye, Joerg Rules file that segfaults. Mac-addresses are replaced by XXs. # Generated by ip6tables-save v1.2.9 on Mon Feb 9 15:58:00 2004 *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT ACCEPT [20:2080] :blocknlog - [0:0] :checkblock - [0:0] :checkmac - [0:0] -A INPUT -s ::/0 -d ::/0 -i lo -j ACCEPT -A INPUT -s ::/0 -d ::/0 -i sit1 -p tcp -m multiport --dports 22,25,53,80,443,993 -j ACCEPT -A INPUT -s ::/0 -d ::/0 -i sit1 -p udp -m multiport --dports 53,123 -j ACCEPT -A INPUT -s ::/0 -d ::/0 -j checkblock -A FORWARD -s ::/0 -d ::/0 -j checkblock -A blocknlog -s ::/0 -d ::/0 -m limit --limit 1/sec -j LOG --log-prefix "Bad v6 Packet:" --log-level 5 -A blocknlog -s ::/0 -d ::/0 -j DROP -A checkblock -s ::/0 -d ::/0 -j checkmac -A checkblock -s ::/0 -d ::/0 -j ACCEPT -A checkblock -s ::/0 -d ::/0 -j blocknlog -A checkmac -s ::/0 -d ::/0 -i eth2 -m mac --mac-source XX:XX:XX:XX:XX:XX -j RETURN -A checkmac -s ::/0 -d ::/0 -i eth2 -m mac --mac-source XX:XX:XX:XX:XX:XX -j RETURN -A checkmac -s ::/0 -d ::/0 -i eth2 -m mac --mac-source XX:XX:XX:XX:XX:XX -j RETURN -A checkmac -s ::/0 -d ::/0 -i eth1 -j RETURN -A checkmac -s ::/0 -d ::/0 -i sit1 -j RETURN -A checkmac -s ::/0 -d ::/0 -j blocknlog COMMIT # Completed on Mon Feb 9 15:58:00 2004
signature.asc
Description: Digital signature
