Hi, With iptables 1.2.7 if you specify -p icmp -j ACCEPT, no icmp traffic is allowed through. If you list the rules with iptables -L you'll see that only icmp type 'echo-reply' is allowed and all other icmp traffic is blocked. I've seached the netfilter mailing list and found a patch for this problem. Can someone add this patch to the ebuild? Thanks, Ronald.
Created attachment 3316 [details, diff] iptables-1.2.7 icmp patch
I have masked iptables-1.2.7 as it contains bugs confirmed by the authors of iptables. A new version, 1.2.7a, is to be released ASAP. I will repoen these bugs and make sure the errors reported doesn't exist in the new version before unmasking 1.2.7a.
I've just commited iptables 1.2.7a. Please test this version and see if upstream has fixed your problems. It's currently masked, I need to know if this version works as expected before I can unmask.
I've checked the new version and it has solved the problem. Works great now! Thanks, Ronald.
