Bug ID 1177265
Summary firewalld: --add-masquerade should only affect ipv4
Classification openSUSE
Product openSUSE Distribution
Version Leap 15.1
Hardware Other
OS Other
Status NEW
Severity Normal
Priority P5 - None
Component Network
Assignee screening-team-bugs@suse.de
Reporter matwey.kornilov@gmail.com
QA Contact qa-bugs@suse.de
Found By ---
Blocker --- 

Hello,

I am running openSUSE Leap 15.1 with firewalld-0.5.5-lp151.5.1.noarch


Enabling masquerading for a zone, enables masquerade both for ipv4 and ipv6.
The latter is generally not desirable and not usable. There is also no way to
change this behavior.

Moreover, this behavior is controversial to man firewalld-cmd(1):

[--permanent] [--zone=zone] --add-masquerade [--timeout=timeval]
           Enable IPv4 masquerade for zone. [...SKIPPED...]
           For IPv6 masquerading, please use the rich language.


This behavior has been fixed upstream:

https://github.com/firewalld/firewalld/commit//88e13653686e4b72b4964e41564c70ca0096e0a9

You are receiving this mail because: