Hello, I found regression between iptables 1.4.0 and 1.4.1-rc1 (also in 1.4.1). The "ip6tables -nL" prints source and destination addresses in NETWORK/NETMASK instead of NETWORK/PREFIXLEN as used in iptables 1.4.0. This doesn't happen if the PREFIXLEN is 0 (i.e. ::/0). Example: # /tmp/iptables-1.4.0/ip6tables -nL FORWARD Chain FORWARD (policy ACCEPT) target prot opt source destination netall-in all ::/0 2002:93fb:1712::/48 netall-out all 2002:93fb:1712::/48 ::/0 # /tmp/iptables-1.4.1-rc1/ip6tables -nL FORWARD Chain FORWARD (policy ACCEPT) target prot opt source destination netall-in all ::/0 2002:93fb:1712::/ffff:ffff:ffff:: netall-out all 2002:93fb:1712::/ffff:ffff:ffff:: ::/0 -- Petr -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
