I'm not the server, I'm the client I just wan't to forward the packets that come from the NTP server to the proper client on the LAN. ________________________________________ De: netfilter-devel-owner@xxxxxxxxxxxxxxx [netfilter-devel-owner@xxxxxxxxxxxxxxx] Em Nome De Amos Jeffries [squid3@xxxxxxxxxxxxx] Enviado: domingo, 26 de Julho de 2009 3:12 Para: Hugo Miguel Mendes Cc: Leonardo Rodrigues; netfilter-devel@xxxxxxxxxxxxxxx Assunto: Re: NTP server Hugo Miguel Mendes wrote: > Thanks for you attention > > A response coming from another ip is exactly what happens in DCC protocol of IRC, and the module nf_conntrack_irc.ko and nf_nat_irc.ko make it possible by using in the source ip of the expectation the address 0.0.0.0 which works like a wildcard. > > Best Regards > > Hugo Mendes That being IRC, a protocol where such behaviour is defined. NTP is direct trusted peer to prevent abuse and protect the little structure that depends on it called The Internet. What would you expect to happen if all your server clocks accepted random non-requested packets as truth? Amos -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html-- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
