On Friday 2011-06-24 18:44, Gáspár Lajos wrote: > > So, I am running an UDP service ON the firewall. (It is not bound to any > specific interface.) bind(2) controls binding to a particular socket address (does not have much to do with interfaces). > As I see: > - The client initiates a connection to the firewall public IPs (in a > round-robin manner). > - The service sees a connection that came from a lan. (Remember that is not > bound to any interface.) > - The service reply with the corresponding local IP of the firewall. Then your service program is faulty. It should reuse the socket address that was used to contact it in the first place. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
