[Bug 71] dnat breaks connection tracking?

bugzilla-daemon@netfilter.org bugzilla-daemon@netfilter.org
Sun, 30 Mar 2003 21:18:26 +0200


https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=71





------- Additional Comments From laforge@netfilter.org  2003-03-30 21:18 -------
First of all: You didn't even specify the particular kernel version you are
running, not even mentioning which versions of which patches you are using (if
any). 

Secondly, I don't see anything strange in this setup. DNAT with FTP sessions has
been working quite fine for years.  In fact, the whole NAT code is an addon to
the conntrack code - and the decision 'RELATED or not' happens before NAT is
done on the related (ftp data) session at all.

Can you really make sure that this is not a misconfiguration or something?  I'm
sorry, but it definitely is one of the standard iptables setups which dozens of
people are running, and I've never seen the described behaviour before.

So unless you cannot tell me more about this problem, I have no idea where to
start...



------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.