[Bug 851] IPv6 SNAT target with --random doesn't work

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Fri Sep 13 10:22:24 CEST 2013


https://bugzilla.netfilter.org/show_bug.cgi?id=851

--- Comment #4 from Alexander Neumann <netfilter at null.bumpern.de> 2013-09-13 10:22:22 CEST ---
Hi Phil,

thanks a lot for looking into this. I confirm I understood that --random only
randomises ports, not IP addresses. I my use-case I want to hide a lot of
clients behind a few IP addresses (disclaimer: network not connected to the
Internet, just for a capture-the-flag game) and the receiver should not be able
to easily distinguish the clients from one another. So I though randomising the
source ports is a nice idea. Is there a way to randomise this further, even the
IP addresses?

I confirm that IPv6 SNAT works for UDP and TCP packets and I will test the
patch this evening.

Thanks again,
Alex

-- 
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.



More information about the netfilter-buglog mailing list