Ubuntu
iptables package

iptables -m state --state UNTRACKED uses SNAT state instead

Bug #1290438 reported by Chaskiel Grundman on 2014-03-10

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	iptables (Debian)	Fix Released	Unknown	debbugs #700066
	iptables (Ubuntu)	Fix Released	Undecided	Unassigned

Bug Description

An input rule like -A INPUT -m addrtype -m state --state NEW,RELATED,UNTRACKED -j whatever

creates a rule that actually refers to the SNAT state.

Chain INPUT (policy ACCEPT)
[...]
whatever all -- anywhere anywhere state NEW,RELATED,SNAT

This was apparently fixed upstream in 1.4.19. I will link the debian report (700066) in a moment

ProblemType: Bug
DistroRelease: Ubuntu 13.10
Package: iptables 1.4.18-1.1ubuntu1
ProcVersionSignature: Ubuntu 3.11.0-17.31-generic 3.11.10.3
Uname: Linux 3.11.0-17-generic x86_64
NonfreeKernelModules: openafs
ApportVersion: 2.12.5-0ubuntu2.2
Architecture: amd64
Date: Mon Mar 10 12:24:44 2014
MarkForUpload: True
SourcePackage: iptables
UpgradeStatus: Upgraded to saucy on 2013-11-01 (129 days ago)

See original description

Tags:

Revision history for this message

Chaskiel Grundman (cg2v) wrote on 2014-03-10:

Dependencies.txt Edit (161 bytes, text/plain; charset="utf-8")
ProcEnviron.txt Edit (102 bytes, text/plain; charset="utf-8")

description:

updated

Bug Watch Updater (bug-watch-updater) on 2014-03-10

Changed in iptables (Debian):
status:	Unknown → Fix Released

Revision history for this message

Oibaf (oibaf) wrote on 2022-01-29:

Fixed since Ubuntu 14.04.

Changed in iptables (Ubuntu):
status:	New → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Bug attachments

Add attachment

Remote bug watches

debbugs #700066
[done normal upstream] Edit

Bug watches keep track of this bug in other bug trackers.

Ubuntuiptables package