Re: NetBIOS datagram nat helper proposal

["John A. Sullivan III" <jsullivan@opensourcedevel.com>]

On Tue, 2005-09-20 at 02:32 +0200, Patrick McHardy wrote:
> John A. Sullivan III wrote:
> > It appears that we may need a netbios datagram NAT helper.  Unless we
> > can find a workaround, it we have encountered a couple of environments
> > where we need to NAT netbios datagram packets.  Since they have embedded
> > IP address information in the netbios header, this protocol breaks with
> > NAT.  We see the packets enter the server with the NAT address but the
> > replies are addressed to the original address as per the netbios header.
> > 
> > We have not seen such a helper within netfilter.  There appears to be a
> > simple helper for this at
> > http://suif.stanford.edu/~csapuntz/ip_nat_netbios.c
> 
> The helper does stateless NAT without issuing any expectations
> or even adjusting the conntrack entry. I'm not sure this is
> enough, but I'm not familiar with the netbios stuff. What is
> running on port 138? Do you have any pointers to a description
> of the protocol?
Yes, this is what I mean by finishing and polishing.
> 
> > We are seeing if we have the resources to finish and polish this patch
> > and submit it.  It seems that we then simply post it to this list to
> > submit it.  Is that the correct procedure?
> 
> Yes, if the patch is OK conceptually. If you send me some pointers,
> I'll have a look.
> 
I believe it is defined by RFC1002.  You can find it here:
http://ubiqx.org/cifs/rfc-draft/rfc1002.html#s4.4
I would think it is pretty straightforward but it is so easy to
dreadfully underestimate these things.  Thanks - John

-- 
John A. Sullivan III
Open Source Development Corporation
+1 207-985-7880
jsullivan@opensourcedevel.com

Financially sustainable open source development
http://www.opensourcedevel.com