On Wednesday 2010-04-14 12:57, Patrick McHardy wrote: >Jan Engelhardt wrote: >> in this round: >> - use IP6SKB_REROUTED in v6 code >> - pick_net function: use skb->dev or skb->dst->dev when available >> (or completely fall back to init_net in case there's something >> going on) > >So what about oif routing which I asked for two times? Guess it must have fallen off somewhere between the resends. We can still add it as a patch on top. >I guess you'd usually have a host for logging or IDS somewhere on a >private network and TEE packets there. So specifying oif and gateway >seems most useful to me. The oif is already determined by the route to the gateway(logging host). I'd also fear that people abuse TEE as a ROUTE replacement when they see an --oif. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
