[Bug 1427] can not reuse source port to a DNATed IP if it is being used by another connection

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Wed Feb 24 17:27:38 CET 2021


Florian Westphal <fw at strlen.de> changed:

           What    |Removed                     |Added
         Resolution|---                         |FIXED
             Status|NEW                         |RESOLVED

--- Comment #2 from Florian Westphal <fw at strlen.de> ---
This is caused by bad interaction between TCP early demux and the NAT engine.
Test case works with "sysctl net.ipv4.tcp_early_demux=0"

patch to detect this case & undo the wrong lookup:


You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20210224/4e625cfa/attachment.html>

More information about the netfilter-buglog mailing list