Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

FS#1339 - It seems that ‘–dport’ option is not recognized by iptables for sctp. #6161

Closed
openwrt-bot opened this issue Feb 10, 2018 · 1 comment
Labels

Comments

@openwrt-bot
Copy link

z237751:

Mys router:

System: CHAOS CALMER (15.05.1, r48532)
Router: Asus RT-N56U

I also reproduced this bug with lede 17.01.1 r3316-7eb58cf109 in VirtualBox (according to the guide on [[https://wiki.openwrt.org/doc/howto/virtualbox|https://wiki.openwrt.org/doc/howto/virtualbox]]).

What happens:

It seems that '--dport' option is not recognized by iptables for sctp. Command execution fails.

Expected result:

Command runs successfully and we can create rules with iptables to match by sctp and destination port.

Steps to reproduce:

First install these:
sctp
kmod-sctp
libsctp
sctp-tools

Try to run this:

iptables -A INPUT -p sctp --dport 1234 -j ACCEPT

Shows error:

iptables v1.4.21: unknown option "--dport"
Try `iptables -h' or 'iptables --help' for more information.

Try to run this:

iptables -A INPUT -p sctp -j ACCEPT

Works!

@openwrt-bot
Copy link
Author

yousong:

This is expected.

The library needed is libxt_sctp.so from iptables which is not packaged in the base repo.

Both Chaos Calmer and 17.01 are now deprecated and not maintained anymore.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

No branches or pull requests

1 participant