MASQUERADE: Route sent us somewhere else
Jason Opperisano
opie at 817west.com
Tue Jan 11 15:54:21 CET 2005
On Tue, 2005-01-11 at 08:48, Horváth Szabolcs wrote:
> Hello!
>
> We have a firewall, and it's inside many UML's.
> I can't establish new connections from UML, kernel log says
> "MASQUERADE: Route sent us somewhere else".
this is basically a known issue with policy routing + MASQUERADE.
possible work-arounds:
- use SNAT instead of MASQ (if you have static IPs you should be doing
this anyway)
- use ROUTE to force the --oif (messy)
try an untested patch:
http://marc.theaimsgroup.com/?l=netfilter-devel&m=109866543308978&w=2
please refer to the following thread from netfilter-devel for more
details:
http://marc.theaimsgroup.com/?t=109389731400005&r=2&w=2
--
"Okay, retrace your steps. Woke up, fought with Marge, ate Guatemalan
insanity peppers, then I... Oh..."
--The Simpsons
More information about the netfilter
mailing list