[Bug 473] 2.6.16.x translates addresses of RELATED packets
incorrectly
bugzilla-daemon at bugzilla.netfilter.org
bugzilla-daemon at bugzilla.netfilter.org
Sat May 13 19:17:40 CEST 2006
https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=473
netfilter at linuxace.com changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |INVALID
------- Additional Comments From netfilter at linuxace.com 2006-05-13 19:17 MET -------
This is by design, and is due to commit bc6e14b6f0b06fe93d809d22e257ddd275feeda9
in 2.6.16 with this description:
[NETFILTER]: Fix NAT PMTUD problems
ICMP errors are only SNATed when their source matches the source of the
connection they are related to, otherwise the source address is not
changed. This creates problems with ICMP frag. required messages
originating from a router behind the NAT, if private IPs are used the
packet has a good change of getting dropped on the path to its destination.
Always NAT ICMP errors similar to the original connection.
closing -- not a bug.
--
Configure bugmail: https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the netfilter-buglog
mailing list