Joris Korbeeck a écrit :
But unfortunately 'conntrack' doesn't recognize the sender's IP address (e.g. 192.168.1.3) as a 'member' of 192.168.1.255. Does anyone have a solution to allow these replies to hostname resolution requests which make use of random ports?
Indeed conntrack does not handle broadcasts. You need to load the NetBIOS Name Service conntrack helper module ip_conntrack_netbios_ns (on older kernels) or nf_conntrack_netbios_ns (on newer kernels).
-- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
