Hi Chris, > So it appears that something about having iptables kick back RST's > rather than type 3's caused the bogus ARP packets as well as the RST > being transmitted out the wrong interface as I described below. I'm not > sure if I'm the only one having this problem, but then again I'm not > sure how many people scrutinize layer 2 as deeply as I do. ;-) If it is the same problem as the RSTs (which looks likely, given the symptoms), you could try applying the latest patch-o-matic, or at least submitted/66_netfilter-policy-routing.patch. Cheers, Chris. -- ___ __ _ / __// / ,__(_)_ | Chris Wilson -- UNIX Firewall Lead Developer | / (_ / ,\/ _/ /_ \ | NetServers.co.uk http://www.netservers.co.uk | \ _//_/_/_//_/___/ | 21 Signet Court, Cambridge, UK. 01223 576516 |
