Bug 55897

Summary: iptables-restore doesn't understand spaces in --log-prefix statements
Product: [Retired] Red Hat Linux Reporter: Need Real Name <chris>
Component: iptablesAssignee: Bernhard Rosenkraenzer <bero>
Status: CLOSED ERRATA QA Contact:
Severity: high Docs Contact:
Priority: medium    
Version: 7.1   
Target Milestone: ---   
Target Release: ---   
Hardware: i386   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2001-11-08 14:40:40 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Need Real Name 2001-11-08 14:40:35 UTC 
Description of Problem:
If an iptables rule contains the --log-prefix statement and an associated
string that contains spaces it produces the error "bad argument 'INPUT'"
when iptables-restore reads the file.

Version-Release number of selected component (if applicable):
iptables-1.2.1a-1

How Reproducible:
Create a rule with --log-prefix in, e.g.

iptables -A INPUT -m limit --limit 10/min --limit-burst 3 -j LOG
--log-prefix "Denied packet: "

and run "/etc/init.d/iptables save", the rule is correctly written to
/etc/sysconfig/iptables. Running "/etc/init.d/iptables start" now produces
the error:

bad argument 'INPUT'

manually editing the /etc/sysconfig/iptables file to replace the "Denied
packet: " with "Denied_packet:_" will cause "/etc/init.d/iptables start" to
work fine.

Steps to Reproduce:
1. 
2. 
3. 

Actual Results:


Expected Results:


Additional Information:
Comment 1 Bernhard Rosenkraenzer 2001-11-08 14:45:42 UTC 
Use 1.2.4