Package: ufw
Version: 0.33-2
Severity: wishlist
Tags: patch
I have a network where its required to filter IGMP messages (essentially
ignoring them but not logging them). ufw considers IGMP not a protocol
so this minor patch just permits igmp.
Note if you add a port to igmp ufw tries to add the rule but iptables
complains. This is the same problem/feature as for protocols such as
ESP.
- Craig
-- System Information:
Debian Release: stretch/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.0.0-2-amd64 (SMP w/6 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages ufw depends on:
ii debconf [debconf-2.0] 1.5.57
ii iptables 1.4.21-2+b1
ii python3 3.4.3-4
pn python3:any <none>
ii ucf 3.0030
ufw recommends no packages.
Versions of packages ufw suggests:
ii rsyslog 8.11.0-2
-- Configuration Files:
/etc/ufw/applications.d/ufw-fileserver changed [not included]
-- debconf information excluded
-- debsums errors found:
debsums: changed file /usr/lib/python3/dist-packages/ufw/common.py (from ufw
package)
--- common.py.orig 2015-07-18 14:13:58.389050252 +1000
+++ common.py 2015-07-18 14:13:43.789308712 +1000
@@ -245,6 +245,7 @@
protocol == "ipv6" or \
protocol == "esp" or \
protocol == "ah" or \
+ protocol == "igmp" or \
protocol == "any":
self.protocol = protocol
else:
