Re: Fw: Fw: [Bugme-new] [Bug 4180] New: masquarade and source ip

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Rusty Russell <rusty@rustcorp.com.au>
To: "David S. Miller" <davem@davemloft.net>
Cc: spied@yandex.ru,
	Netfilter development mailing list
	<netfilter-devel@lists.netfilter.org>,
	Patrick McHardy <kaber@trash.net>
Subject: Re: Fw: Fw: [Bugme-new] [Bug 4180] New: masquarade and source ip
Date: Tue, 08 Feb 2005 13:21:31 +1100	[thread overview]
Message-ID: <1107829291.19407.9.camel@localhost.localdomain> (raw)
In-Reply-To: <20050207121425.53c34af2.davem@davemloft.net>

On Mon, 2005-02-07 at 12:14 -0800, David S. Miller wrote:
> On Mon, 07 Feb 2005 21:15:50 +0100
> Patrick McHardy <kaber@trash.net> wrote:
> 
> > >Didn't this get changed on purpose?
> >
> > Yes. One thing we could do to make it more consistent is treat
> > local packets the same way as forwarded ones in MASQUERADE, then
> > at least all packets would have the same source address. This check
> > currently prevents local packets from beeing masqueraded:
> > 
> >         /* FIXME: For the moment, don't do local packets, breaks
> >            testsuite for 2.3.49 --RR */
> >         if ((*pskb)->sk)
> >                 return NF_ACCEPT;
> > 
> > I'm not sure if we can simply remove it, maybe Rusty remembers :)

Remove it; nothing should break.  The network code used to hate local
packets getting changed, but we do the right thing these days (if not,
that's another bug).

> Ok, when you figure out what's going on please post the analysis to
> netdev et al., and in particular Andrew or Stephen, so the bugzilla
> can get closed properly.

We vastly simplified the masquerade code to use inet_select_addr(),
because its purpose is for dynamic links.  This user should be using
SNAT to specify exactly what he/she wants.

Rusty.
-- 
A bad analogy is like a leaky screwdriver -- Richard Braakman

     prev parent reply	other threads:[~2005-02-08  2:21 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2005-02-07 19:42 Fw: Fw: [Bugme-new] [Bug 4180] New: masquarade and source ip David S. Miller
2005-02-07 20:15 ` Patrick McHardy
2005-02-07 20:14   ` David S. Miller
2005-02-08  2:21     ` Rusty Russell [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1107829291.19407.9.camel@localhost.localdomain \
    --to=rusty@rustcorp.com.au \
    --cc=davem@davemloft.net \
    --cc=kaber@trash.net \
    --cc=netfilter-devel@lists.netfilter.org \
    --cc=spied@yandex.ru \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.