#19765: Chaos Calmer 15.05-rc1: no iptables multiport support
------------------------------------------+--------------------------------
Reporter: anonymous | Owner: developers
Type: defect | Status: new
Priority: normal | Milestone: Chaos Calmer
Component: kernel | (trunk)
Keywords: netfilter multiport iptables | Version: Trunk
------------------------------------------+--------------------------------
Just installed new RC1 of Chaos Calmer.
{{{
OpenWrt Chaos Calmer 15.05-rc1 / LuCI Master (git-15.126.50380-7a54785)
}}}
It seems that there is a parse error when trying to use the multiport
module in firewall "extra arguments":
{{{
-m multiport --dport 80,443
}}}
fw3 -4 reload shows
{{{
(...)
* Populating IPv4 filter table
* Zone 'trust'
* Zone 'untrust'
* Rule 'Mgm in from trust'
Warning: fw3_ipt_rule_append(): Can't find match 'multiport'
* Rule 'trust2untrust'
* Populating IPv4 nat table
* Zone 'trust'
* Zone 'untrust'
(...)
}}}
The rule is not added then.
Packages
{{{
root@OpenWrt:~# opkg list-installed | grep ipt
iptables - 1.4.21-1
kmod-ipt-conntrack - 3.18.11-1
kmod-ipt-core - 3.18.11-1
kmod-ipt-nat - 3.18.11-1
kmod-nf-ipt - 3.18.11-1
kmod-nf-ipt6 - 3.18.11-1
}}}
Modules
{{{
root@OpenWrt:~# lsmod
arc4 1312 4
ath 19925 3 ath9k
ath9k 87030 0
ath9k_common 16894 1 ath9k
ath9k_hw 337272 2 ath9k
cfg80211 213985 4 ath9k
compat 1628 4 ath9k
crc_ccitt 1019 1 ppp_async
crypto_blkcipher 10487 1 arc4
ehci_hcd 32092 1 ehci_platform
ehci_platform 3488 0
gpio_button_hotplug 4480 0
ip6_tables 9281 3 ip6table_raw
ip6t_REJECT 1184 2
ip6table_filter 608 1
ip6table_mangle 1072 1
ip6table_raw 576 1
ip_tables 9421 4 iptable_nat
ipt_MASQUERADE 624 0
ipt_REJECT 912 2
iptable_filter 672 1
iptable_mangle 944 1
iptable_nat 768 1
iptable_raw 640 1
ipv6 268851 26 nf_conntrack_ipv6
ledtrig_usbdev 1936 0
mac80211 381891 1 ath9k
nf_conntrack 48862 11 nf_nat_ipv4
nf_conntrack_ftp 5280 1 nf_nat_ftp
nf_conntrack_ipv4 5152 8
nf_conntrack_ipv6 5536 3
nf_conntrack_rtcache 2480 0
nf_defrag_ipv4 838 1 nf_conntrack_ipv4
nf_defrag_ipv6 9063 1 nf_conntrack_ipv6
nf_log_common 2479 2 nf_log_ipv4
nf_log_ipv4 3136 0
nf_log_ipv6 3296 0
nf_nat 9948 5 nf_nat_ipv4
nf_nat_ftp 1200 0
nf_nat_ipv4 4225 1 iptable_nat
nf_nat_masquerade_ipv4 1388 1 ipt_MASQUERADE
nf_reject_ipv4 1955 1 ipt_REJECT
nf_reject_ipv6 2055 1 ip6t_REJECT
nls_base 4976 1 usbcore
ohci_hcd 22207 1 ohci_platform
ohci_platform 2864 0
ppp_async 6320 0
ppp_generic 20594 3 pppoe
pppoe 8112 0
pppox 1354 1 pppoe
slhc 4299 1 ppp_generic
usb_common 1160 1 usbcore
usbcore 117624 5 ledtrig_usbdev
x_tables 10741 26 ipt_REJECT
xt_CT 2224 0
xt_LOG 768 0
xt_REDIRECT 1056 0
xt_TCPMSS 2608 0
xt_comment 480 37
xt_conntrack 2160 10
xt_id 480 0
xt_limit 992 0
xt_mac 624 0
xt_mark 672 0
xt_multiport 1184 0
xt_nat 1072 0
xt_state 688 0
xt_tcpudp 1696 0
xt_time 1632 0
}}}
Is anything missing?
--
Ticket URL: <https://dev.openwrt.org/ticket/19765>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets
