378867 – net-firewall/iptables-1.4.11.1-r2: bug in DNAT rules

Bug 378867 - net-firewall/iptables-1.4.11.1-r2: bug in DNAT rules

Summary: net-firewall/iptables-1.4.11.1-r2: bug in DNAT rules

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Core system (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Peter Volkov (RETIRED)

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2011-08-12 07:10 UTC by floppe
Modified:	2011-09-07 11:39 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description floppe 2011-08-12 07:10:42 UTC

Wrong port generated when insert of a DNAT rule using orig dest port.

Not sure if allowed, but found same bug in debian tracker so I'll link to it:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=632804



Reproducible: Always

Steps to Reproduce:
1. Well, I use shorewall. So insert a DNAT rule with orig dest port.
2. shorewall restart
3. DNAT rule does not work
Actual Results:  
Wrong port generated in netfilter

Comment 1 Peter Volkov (RETIRED) gentoo-dev

2011-09-03 13:11:48 UTC

According to debian bug report this should be fixed in 1.4.12 (which is already in tree). Please test with that version and reopen bug report if problem persists. Thank you!

Comment 2 floppe 2011-09-07 11:39:41 UTC

I can confirm that 1.4.12 works. Thank you.