[Bug 71] dnat breaks connection tracking?

bugzilla-daemon@netfilter.org bugzilla-daemon@netfilter.org
Fri, 18 Apr 2003 18:40:47 +0200


https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=71

mbm@alt.org changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |REOPENED
         Resolution|WONTFIX                     |



------- Additional Comments From mbm@alt.org  2003-04-18 18:40 -------
No, that's pretty much what I was trying to avoid doing.

Isn't there a way to take the dnat'd packets and insert them back into the 
incoming queue so that all the netfilter rules run again on the newly dnat'd 
packet? This would solve the problem without introducing new security holes, 
although it has a potential to setup an infinite loop if the netfilter rules 
are set wrong.



------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.