Hi, while preparing the upcoming shorewall-4.5.19 release for the tree, which will introduce event/trigger functionality using ip[6]tables 'recent' module, an iptables bug was uncovered: http://thread.gmane.org/gmane.comp.security.shorewall/29850/focus=29859 Upstream fix is available at $URL Can we get this patch applied? Reproducible: Always Steps to Reproduce: 1. iptables -A %IfEvent -m recent --rcheck --second 120 --reap --hitcount 5 --name SSH --rsource -j SSH_BLACKLIST Actual Results: iptables v1.4.19.1: unknown option "--reap" Expected Results: No error message. "--reap" is a valid option.
Upstream released iptables-1.4.20, which contains the fix from $URL on 6th August 2013. iptables-1.4.20 hit Gentoo's tree on 10th August 2013.