Re: Change outbound ICMP source

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: Change outbound ICMP source
From: sven@xxxxxx
Date: Tue, 11 Apr 2006 00:12:33 +0200
Cc: netfilter@xxxxxxxxxxxxxxxxxxx
In-reply-to: <443ABD8A.7080002@xxxxxxxxx>
References: <443A9DA4.30801@xxxxxxxxx> <Pine.LNX.4.64.0604102004520.26404@xxxxxxxxxxxxxxxxxxxx> <443ABD8A.7080002@xxxxxxxxx>
User-agent: Thunderbird 1.5 (Windows/20051201)

> That doesn't achieve what I want.  If a TCP connection is rejected at
> the firewall, then blocking ICMP at the upstream router will block the
> host-unreachable from going out, not make it seem as if the router is
> the source.

You want to do SNAT?

Follow-Ups:
- Re: Change outbound ICMP source
  - From: Nathaniel Hall

References:
- Change outbound ICMP source
  - From: Nathaniel Hall
- Re: Change outbound ICMP source
  - From: R. DuFresne
- Re: Change outbound ICMP source
  - From: Nathaniel Hall

Prev by Date: IPinIP ipencap with iptables
Next by Date: Re: Change outbound ICMP source
Previous by thread: Re: Change outbound ICMP source
Next by thread: Re: Change outbound ICMP source
Index(es):
- Date
- Thread

[Index of Archives] [Linux Netfilter Development] [Linux Kernel Networking Development] [Netem] [Berkeley Packet Filter] [Linux Kernel Development] [Advanced Routing & Traffice Control] [Bugtraq]

Powered by Linux