[Bug 792] nf_conntrack keep updating incorrect entry in conntrack table after default routing changed
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Fri May 24 00:30:39 CEST 2013
https://bugzilla.netfilter.org/show_bug.cgi?id=792
Phil Oester <netfilter at linuxace.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|ASSIGNED |RESOLVED
CC| |netfilter at linuxace.com
Resolution| |INVALID
--- Comment #3 from Phil Oester <netfilter at linuxace.com> 2013-05-24 00:30:37 CEST ---
Netfilter is working as designed here. We can't change it to make it work with
the braindead Windows ping implementation without causing potential for
conntrack DoS. Adding tracking of the sequence number to the conntrack would
cause a massive increase in conntracks during ping floods, for instance.
Closing.
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
More information about the netfilter-buglog
mailing list