iptables has broken libxt_conntrack: --ctproto always 0
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
iptables (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
When using the --ctproto option of the libxt_conntrack iptables module, whatever you pass as the layer4 protocol, it's always recorded as 0.
This this in fact this known bug : http://
Clean patch is available on netfilter git repos : http://
Applaying this patch fixed this, and allow to use --ctproto again. Please apply it !
Thanks
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: iptables 1.4.12-1ubuntu4
ProcVersionSign
Uname: Linux 3.2.0-26-
ApportVersion: 2.0.1-0ubuntu8
Architecture: i386
Date: Tue Jul 3 11:50:26 2012
InstallationMedia: Ubuntu 12.04 LTS "Precise Pangolin" - Release i386 (20120423.2)
ProcEnviron:
LANGUAGE=
TERM=xterm-
LANG=fr_FR.UTF-8
SHELL=/bin/bash
SourcePackage: iptables
UpgradeStatus: No upgrade log present (probably fresh install)
This bug was fixed in the package iptables - 1.4.12-2ubuntu1
---------------
iptables (1.4.12-2ubuntu1) quantal; urgency=low
* Merge from Debian unstable. Remaining changes: FTBS-by- copying- linux-types. h-from- linux-3. 2.patch: Fix FTBS recent- Add-support- for-reap- option. patch: add --reap support. iptables. install: install NAT and packetfilter howtos into usr/share/ doc iptables- dev.install: install netfilter howto into /usr/share/doc iptables- dev.doc- base.netfilter- extensions, iptables- dev.doc- base.netfilter- hacking, iptables. doc-base. nat, debian/ iptables. doc-base. packet- filter: add iptables. lintian- overrides: remove reference to libipq0 iptables- dev.install: remove usr/share/man/man3 only used with libipq_ pic.la. patch, no longer required patch: fix --ctproto 0 output (LP: #1020490) is-null. patch: ip(6)tables- restore: make sure argv is NULL patches/ 9005-lp1027252- fixrestore. patch: fix iptables-restore with
- 9000-howtos.patch: add howtos/ and install them
- 9001-Fixed-
against linux 3.2 headers
- 9002-libxt_
Merge in changes from 1.4.12-1ubuntu4 into this patch
- debian/control: Build-Depends on linuxdoc-tools
- debian/
/
- debian/
- debian/
debian/
debian/
howtos
* Drop libipq support since it has been obsoleted in 3.5 and later kernels.
Per upstream, users of libipq should transition to nfnetlink_queue (from
libnfnetlink0) instead. (LP: #1020598)
- debian/control: remove reference to libipq
- debian/rules: compile with --disable-libipq
- debian/
- debian/
libipq manpages
- dropped 9001-build-
* 9003-lp1020490.
* 9004-argv-
terminated
* debian/
gcc-4.7 and -O1 or higher (LP: #1027252)
iptables (1.4.14-2) unstable; urgency=low
* Added missing 1.4.13-1.1 NMU fix
-- Jamie Strandboge <email address hidden> Fri, 20 Jul 2012 15:45:01 -0500