On Fri, 1 Oct 2010, Mr Dash Four wrote: > > You should provide at least the following: kernel, iptables, ipset version > > numbers, the iptables rules and the (non)matching sets with the elements. > > Without exact details I cannot help. > > > kernel-2.6.34.7-56.fc13.x86_64 > iptables-1.4.7-2.fc13.x86_64 > ipset 4.3 > xtables-addons 1.29 > > For the purpose of this small test, I am initiating a connection from the > local machine (10.1.2.7, network 10.1.2.0/24) to my other machine (10.1.1.3, > network 10.1.1.0/24) over ssh (port 22) and ask iptables to match that and log > it to the syslog. [...] Thanks for the complete description - I have just released ipset 4.4 which fixes this nasty bug. Best regards, Jozsef - E-mail : kadlec@xxxxxxxxxxxxxxxxx, kadlec@xxxxxxxxxxxx PGP key : http://www.kfki.hu/~kadlec/pgp_public_key.txt Address : KFKI Research Institute for Particle and Nuclear Physics H-1525 Budapest 114, POB. 49, Hungary -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
