Re: SNAT for two interfaces not working

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Sheldon Hearn <sheldonh@xxxxxxxxxx>
Subject: Re: SNAT for two interfaces not working
From: David Coulson <david@xxxxxxxxxxxxxxxx>
Date: Wed, 28 Sep 2005 09:51:34 -0400
Cc: netfilter@xxxxxxxxxxxxxxxxxxx
In-reply-to: <200509281547.23683@xxxxxxxxxxxxxx>
References: <200509281547.23683@xxxxxxxxxxxxxx>
Sender: netfilter-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.8) Gecko/20050511

Sheldon Hearn wrote:
> So basically, the SYN+ACK is arriving back at the firewall, but the 
> firewall then ignores it.  If I add logging, I see the packet hit 
> PREROUTING, but that's it.

Disable return path filtering on the interfaces.

echo 0 > /proc/sys/net/ipv4/conf/eth0/rp_filter

David

Follow-Ups:
- Re: SNAT for two interfaces not working
  - From: Sheldon Hearn
- Re: SNAT for two interfaces not working
  - From: Sheldon Hearn

References:
- SNAT for two interfaces not working
  - From: Sheldon Hearn

Prev by Date: SNAT for two interfaces not working
Next by Date: Re: SNAT for two interfaces not working
Previous by thread: SNAT for two interfaces not working
Next by thread: Re: SNAT for two interfaces not working
Index(es):
- Date
- Thread

[Index of Archives] [Linux Netfilter Development] [Linux Kernel Networking Development] [Netem] [Berkeley Packet Filter] [Linux Kernel Development] [Advanced Routing & Traffice Control] [Bugtraq]

Powered by Linux