Package: iptables
Version: 1.4.1.1-3
Severity: serious
Justification: 3
Tags: patch
*** Please type your report below this line ***
Iptables tries to resolve host names even if numeric (-n) parameter is
set. This applies to conntrack (revision 1).
Steps to reproduce:
iptables -N testct
iptables -A testct -d 172.16.27.29/32 -p tcp -m tcp --dport 80 -m \
conntrack --ctorigdst 77.244.240.226 -j ACCEPT
iptables -L testct -n
The listing is resolving the host.
Attached you find a patch which solved the problem for me but it is only
tested for ipv4.
-- System Information:
Debian Release: lenny/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.26-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages iptables depends on:
ii libc6 2.7-13 GNU C Library: Shared libraries
iptables recommends no packages.
iptables suggests no packages.
-- no debconf information
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]