Package: iptables Version: 1.3.3-2 Subject: Re: version 1.3.5 includes ipsec policy matching support Followup-For: Bug #365253
*** Please type your report below this line *** With the kernel following 2.6.15.4 + patch-o-matic-ng=20060212, a massive inclusion of patch-o-matic was made to the kernel.org kernel (and 2.6.16). However, the changes were not completely backwards compatible with the previous patch-o-matic. Using the policy match in 2.6.16 results in an error message stating: $ iptables -A INPUT -p tcp --dport ldap -m policy --dir in --pol ipsec -j ACCEPT iptables: invalid argument with the kernel message: $ dmesg | grep ipt_policy ipt_policy: matchsize 116 != 308 As previously mentioned, using 1.3.5 would fix the problem. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15.4-patch-o-matic-ng-20060212-skas3-v8.2-vt1211-endless Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages iptables depends on: ii libc6 2.3.6-15 GNU C Library: Shared libraries iptables recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]