On Wed, Mar 08, 2017 at 10:55:32AM +0100, Pablo Neira Ayuso wrote: > > This is actually a generic problem: > > # iptables -I INPUT -p tcp -s localhost > > results in: > > # iptables-save > # Generated by iptables-save v1.6.1 on Wed Mar 8 10:53:07 2017 > *filter > :INPUT ACCEPT [13:1628] > :FORWARD ACCEPT [0:0] > :OUTPUT ACCEPT [4:317] > -A INPUT -s 127.0.0.1/32 -p tcp > -A INPUT -s 127.0.0.1/32 -p tcp > COMMIT > # Completed on Wed Mar 8 10:53:07 2017 > What's the right way to fix this? I want to use iptables-translate in a web application[0] so I can copy and use the translations. Adding the extra line forces me to manually edit the output. > Original problem was introduce at: > > commit 2d2b5e046aa56a518160716a9ddf9df53fc79c1f > Author: Arpan Kapoor <rpnkpr@xxxxxxxxx> > Date: Thu Mar 17 18:27:19 2016 +0530 > > libxtables: Replace gethostbyname() with getaddrinfo() > > Did you also run iptables tests? See iptables-test.py, although I > guess our test infrastructure is not catching up this case. > Before and after patch I get: 102 test files, 706 unit tests, 687 passed Thanks. [0]: https://2nft.alemayhu.com/ -- Mit freundlichen Grüßen Alexander Alemayhu -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
