Florian Westphal <fw@xxxxxxxxx> wrote: > rule for 0.0.0.0/8 is added as 0.0.0.0/0, because we did not check > mask (or negation, for that matter). > > Fix this and add test cases too. > > This also revealed an ip6tables-nft-save bug, it would print > ' !-d', not '! -d'. I've pushed this patch, with one small change: > extensions/libip6t_ipv6header.t | 4 ++++ I added new extensions/libip6t_standard.t test case instead of abusing libip6t_ipv6header.t for the ipv6 saddr/daddr test cases. There will most likely be a 1.8.2 release sometime next week.
