Hi
there has been a new iptables-1.2.2-5mdk should be available
in your mirror when you read that, it should have fixes to all
the bugs reported. Vicent Dannen is doing one update for 8.0
shortly. I apologize to need so many time for doing the
update, but I have been busy with other things:
Problems was:
- iptables-restore segfault when you feed it with bad options
(it is fixed now, thanks go to Ben Reser <[EMAIL PROTECTED]>)
not me.
- the problem was that the state in /etc/sysconfig/iptables was
not correct, a way to generate that file is:
/etc/init.d/iptables stop # remove all the rules
iptables -blah -blah (as if there is no tomorrow
to secure your firewall).
/etc/init.d/iptables save # save the rules in
# /etc/sysconfig/iptables
# in a format that iptables-restore
# understand
And everything is there.
Notice that if you had a valid /etc/init.d/iptables, you have nothing
wrong happening.
As an added bonus, this algorithm also works for ipv6 if you changes
all the apparitions of iptables for ip6tables.
Special thanks & apologies to "Ian C. Sison" <[EMAIL PROTECTED]>, that
did everything that you can think of to get the bug fixed (aka he was
a good user reporting the bug once time and another and I was a bad
maintainer fixing the bug late).
Later, Juan.
--
In theory, practice and theory are the same, but in practice they
are different -- Larry McVoy
