On 11/8/22 03:13, Pablo Neira Ayuso wrote:
On Mon, Nov 07, 2022 at 03:54:37PM -0600, Ian Pilcher wrote:
I missed it, because ip6tables-translate-restore suggests:
nft add rule ip6 filter INPUT ip6 saddr
::c8:0:0:0:1/::ff:ffff:ffff:ffff:ffff counter accept
Which gives a syntax error.
iptables version? 1.8.8 here provides a correct translation.
1.8.7 (on Fedora 36).
I see that the 1.8.8 changelog contains:
Phil Sutter (134):
...
xtables-translate: Fix translation of odd netmasks
And it looks like Fedora 37 will ship with 1.8.8, so it appears that my
timing was particularly unfortunate.
--
========================================================================
Google Where SkyNet meets Idiocracy
========================================================================
