ratheesh k a écrit : > > suppose ip 8.8.8.8 is accessible thru gateway 10.232.18.5 and we > configured the linux machine to accept > icmp redirect messages ( if we set NET_IPV4_CONF_ACCEPT_REDIRECTS ) . Do you mean sysctl net.ipv4.conf.<interface>.accept_redirects ? Note that this settings is ignored (and so are ICMP redirects) when forwarding is enabled, thus when Linux acts as a router. > Linux will send packet to 8.8.8.8 thru 192.168.1.1 as per default > route . The gateway machine ( ip 192.168.1.1 ) will respond back with > icmp redirect . (I think so ) If it is configured to do so. If it runs a Linux kernel, see sysctl net.ipv4.conf.<interface>.send_redirects. > So our linux machine can use the other route ? Yes, a temporary redirect route to 8.8.8.8 will be created in the routing cache. You can see it with "ip route show cache". Note : This does not seem to be much related to netfilter. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
