Re: snat bridge routes reply packets

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Amin Azez <azez@ufomechanic.net>
To: netfilter-devel@lists.netfilter.org
Subject: Re: snat bridge routes reply packets
Date: Thu, 29 Sep 2005 14:12:33 +0100	[thread overview]
Message-ID: <433BE841.2090203@ufomechanic.net> (raw)
In-Reply-To: <20214.217.166.60.19.1127998151.squirrel@ma.rtij.nl>

Martijn Lievaart wrote:
> Amin Azez zei:
> 
>>Henrik Nordstrom wrote:
>>
>>>But I strongly suspect your problems is not at all related to routing.
>>>It would only be routing related if your bridge does not have correct
>>>routing info for either the source or destination.
>>
>>My bridge does may not have routing for the source in many instances.
> 
> 
> Maybe a stupid remark, but if you create routes for the source to the
> existing IP where you want the packet delivered? Does that solve your
> problem?

My actual problem is that I need a bridging kernel that can be deployed
in unknown network environments and nat to a known gateway that is the
only machine guaranteed to be on the same subnet. It's not pretty.

We have created broad network aliases for the bridge so that all IP
addresses are local and roughly get the scenario you speak of, but then
we need to add static arp entries to assign the default gateway's mac to
specific known non-local ip, which is of course a worse hack than
mending snat for source-bridge scenarios.

Sam

next prev parent reply	other threads:[~2005-09-29 13:12 UTC|newest]

Thread overview: 17+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2005-09-28 16:05 snat bridge routes reply packets Amin Azez
2005-09-28 19:56 ` Henrik Nordstrom
2005-09-29  8:42   ` Amin Azez
2005-09-29 10:11     ` Henrik Nordstrom
2005-09-29 12:19       ` Amin Azez
2005-09-29 12:49         ` Martijn Lievaart
2005-09-29 13:12           ` Amin Azez [this message]
2005-09-29 15:20             ` Martijn Lievaart
2005-09-29 16:33               ` Henrik Nordstrom
2005-09-30  5:27                 ` Martijn Lievaart
2005-09-30 11:24                   ` Henrik Nordstrom
2005-10-03 10:48                   ` Amin Azez
2005-10-03 12:24                     ` Henrik Nordstrom
2005-10-04 10:58                       ` Amin Azez
2005-09-30  9:28                 ` Amin Azez
2005-09-29 14:35         ` Henrik Nordstrom
2005-09-30  9:56           ` Amin Azez

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=433BE841.2090203@ufomechanic.net \
    --to=azez@ufomechanic.net \
    --cc=netfilter-devel@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.