[pkg-netfilter-team] Bug#921639: Bug#921639: iptables-restore: cannot jump to earlier initialized chain
Arturo Borrero Gonzalez
arturo at debian.org
Thu Feb 7 16:36:37 GMT 2019
On 2/7/19 4:16 PM, Miquel van Smoorenburg wrote:
> Package: iptables
> Version: 1.8.2-3
> Severity: important
>
> I ran into a bug in iptables-restore. This works:
>
> *filter
> :FILERS_UDP - [0:0]
> :FORWARD ACCEPT [0:0]
> :INPUT ACCEPT [0:0]
> :OUTPUT ACCEPT [0:0]
> -A INPUT --protocol udp --source 10.0.0.0/8 --jump FILERS_UDP
> -A FILERS_UDP --protocol udp --dport sunrpc --source 10.0.79.0/27 --jump
> ACCEPT
> COMMIT
>
> And this doesn't:
>
> *filter
> :FILERS_UDP - [0:0]
> :FORWARD ACCEPT [0:0]
> :INPUT ACCEPT [0:0]
> :OUTPUT ACCEPT [0:0]
> -A FILERS_UDP --protocol udp --dport sunrpc --source 10.0.79.0/27 --jump
> ACCEPT
> -A INPUT --protocol udp --source 10.0.0.0/8 --jump FILERS_UDP
> COMMIT
>
>
Please, share your linux kernel version. May be a Linux kernel issue already solved.
More information about the pkg-netfilter-team
mailing list