[Ipfilter-bugs] [ ipfilter-Bugs-2024389 ] Entries added with SIOCSTPUT - but no rules - do not work
Brought to you by:
darren_r
Menu
▾
▴
[Ipfilter-bugs] [ ipfilter-Bugs-2024389 ] Entries added with SIOCSTPUT - but no rules - do not work
|
From: SourceForge.net <no...@so...> - 2008-07-22 08:35:16
|
Bugs item #2024389, was opened at 2008-07-22 01:34 Message generated for change (Settings changed) made by darren_r You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=849053&aid=2024389&group_id=169098 Please note that this message will contain a full copy of the comment thread, including the initial issue submission, for this request, not just the latest update. Category: NAT Group: All Status: Open Resolution: None >Priority: 3 Private: No Submitted By: Nobody/Anonymous (nobody) >Assigned to: Darren (darren_r) Summary: Entries added with SIOCSTPUT - but no rules - do not work Initial Comment: If entries are added to the NAT table directly using SIOCSTPUT but there are no NAT rules loaded (from e.g. ipnat.conf) then the NAT table entries will be ignored. To workaround this problem, it is possible to add a dummy entry like this to ipnat.conf: rdr foo0 0/0 -> 0/0 THe problem comes from this line near the top of fr_checknatin and fr_checknatout: if (nat_stats.ns_rules == 0 || fr_nat_lock != 0) return 0; ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=849053&aid=2024389&group_id=169098 |