On 09/23/08 05:09, Pablo Neira Ayuso wrote:
The last time that I had a look at the antefacto patch it look to me like a hack. IIRC, the problem is the LVS design (at least time ago when I had a look at it) as it bypasses the network stack. This screws up the possibility of having stateful firewalling and LVS.
I can offer a recent confirmation (with in the last three months) that LVS does indeed still interfere with firewalling.
Grant. . . . -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
