Jan Engelhardt wrote: > On Thursday 2010-02-04 13:58, Thomas Woerner wrote: > >> Hello, >> >> I just fell over network interface definitions in kernel and >> netfilter/iptables. >> >> Interfaces names in the kernel have few limits: Only spaces and slashes are not >> allowed, but everything else, even Ctrl characters are. >> >> In iptables, there are other limits: Colon, exclamation mark and asterisk are >> not allowed. The plus is treated special for matching. But what will be matched >> if the interface starts with or contains a plus? >> >> iptables allows to use interfaces containing spaces and slashes. iptables-save >> is not escaping interface names. The interface "+" will be treated as no >> interface limit at all and will be dropped, therefore all interfaces match. >> >> I think there should be some discussion about interface names and limits in >> kernel and netfilter/iptables. >> >> What do you think? > > I think we should cc netdev for a start. I don't think there is a reason for this limitation in iptables, so why not simply remove it? -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
