bugzilla-daemon at bugzilla.netfilter.org
2011-Sep-18 22:37 UTC
[Bug 693] SNAT is failing to maquerade some TCP RST packets
http://bugzilla.netfilter.org/show_bug.cgi?id=693 --- Comment #4 from Leonid Egorov <lswa156 at gmail.com> 2011-09-19 00:37:45 --- Hi, I also have the same problem: on my workplace we have 3 ISPs and it was necessary to switch internet traffic via different ISPs in case of accidence. It made by simple shell scripts (switchover default route and make some changes in routing table). One ISP (main provider) is accessed via PPPoE connection, another one have direct connection and last provider is accessed via remote gate. In case of accidence on PPPoE side switching to another provider is done, but after restoration PPPoE connection back switching is not working. Internet traffic not work, reason: all our packet from internal network go to internet with internal source addresses (no SNAT translation done). I can fix this packets on my FORWARD rule, but POSTROUTING nat rule never detect them. I need do reboot whole PC in order to restore proper working. # uname -a Linux ubuntu-gw 2.6.38-11-server #48-Ubuntu SMP Fri Jul 29 19:20:32 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux I play with net.ipv4.conf.all.arp_ignore=1(http://www.spinics.net/lists/netfilter/msg51016.html), set additional FORWARD rule for INVALID packets, but no success. -- Configure bugmail: http://bugzilla.netfilter.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are watching all bug changes.