Hello, I've been building my firewall over the last few days, and am doing the testing for it now. During that testing (and much head-scratching) I think I found a bug in the iptables program (not kernel code).
I've verified this in the standard iptables program that comes with Slackware 8.0 (1.2.2) and that latest 1.2.6a, which I downloaded today. Description: If if specify a destination address (or source address? don't know), as a shortened CIDR subnet, as 192.168.1/24, when I run iptables -L -v, it shows as 192.168.0.0/24. Note that this is a different subnet!!! If I specify the address as 192.168.1.0/24, the problem goes away. Also, the reverse resolving code when printing out addresses seems flawed. I get fairway.localdomain.localdomain. I know its not the DNS, since a zone transfer dig @127.0.0.1 -t axfr 1.168.192.in-addr.arpa works fine and doesn't show the extra localdomain. None of the other networks addresses do this, such as localdmz and localwlan. This may be related to the fact that localdomain is first in /etc/networks. Another reverse resolving bug I found was that if I specify 192.168.0.0/16 (note /16), it pops up as localdmz, which is 192.168.0.0/24. I'm not a subscriber to this mailing list, so please send any questions back to my email address. Cameron Kerr -- Email: [EMAIL PROTECTED] Website: http://homepages.paradise.net.nz/~cameronk/ GPG key: http://homepages.paradise.net.nz/~cameronk/gpgkey.asc
