iptables 1.4.8 released

iptables is the userspace command line program used to configure the Linux 2.4.x and 2.6.x IPv4 packet filtering ruleset. It is targeted towards system administrators. The iptables package also includes ip6tables. ip6tables is used for configuring the IPv6 packet filter.

This release supports all new features of the 2.6.34 kernel.


  • extensions: REDIRECT: fix –to-ports parser
  • iptables: add noreturn attribute to exit_tryhelp()
  • extensions: MASQUERADE: fix –to-ports parser
  • libxt_comment: avoid use of IPv4-specific examples
  • libxt_CT: add a manpage
  • iptables: correctly check for too-long chain/target/match names
  • doc: libxt_MARK: no longer restricted to mangle table
  • doc: remove claim that TCPMSS is limited to mangle
  • libxt_recent: add a missing space in output
  • doc: add manpage for libxt_osf
  • libxt_osf: import nfnl_osf program
  • extensions: add support for xt_TEE
  • iptables: optionally disable largefile support
  • CT: fix –ctevents parsing
  • extensions: add CT extension
  • libxt_CT: print conntrack zone in ->print/->save
  • Merge branch ‘master’ of git://dev.medozas.de/iptables into iptables-next
  • xtables: fix compilation when debugging is enabled
  • Merge branch ‘iptables-next’
  • Revert “Merge branch ‘iptables-next'”
  • Bump version to 1.4.8
  • libxt_conntrack: document –ctstate UNTRACKED
  • iprange: fix xt_iprange v0 parsing.

Don't miss