Hi Dave, Please consider applying the following patch for net-next, which introduce events for routing changes. With it, the MASQUERADE target is able to clean up connections with wrong NATed source addresses after routing changed (backup default route, VPNs). Best regards, Jozsef Jozsef Kadlecsik (1): Introduce notification events for routing changes include/linux/inetdevice.h | 2 ++ include/linux/netdevice.h | 1 + include/net/ip6_route.h | 3 ++- net/ipv4/fib_trie.c | 17 +++++++++++++++++ net/ipv6/route.c | 21 +++++++++++++++++++++ 5 files changed, 43 insertions(+), 1 deletions(-) -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
