bugzilla-daemon at netfilter.org
2013-May-23 22:30 UTC
[Bug 792] nf_conntrack keep updating incorrect entry in conntrack table after default routing changed
https://bugzilla.netfilter.org/show_bug.cgi?id=792
Phil Oester <netfilter at linuxace.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|ASSIGNED |RESOLVED
CC| |netfilter at linuxace.com
Resolution| |INVALID
--- Comment #3 from Phil Oester <netfilter at linuxace.com> 2013-05-24
00:30:37 CEST ---
Netfilter is working as designed here. We can't change it to make it work
with
the braindead Windows ping implementation without causing potential for
conntrack DoS. Adding tracking of the sequence number to the conntrack would
cause a massive increase in conntracks during ping floods, for instance.
Closing.
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
Seemingly Similar Threads
- [Bug 792] New: ip_conntrack keep updating incorrect entry in conntrack table after default routing changed
- [Bug 495] conntrack race condition
- [Bug 48] conntrack breaks udp path mtu discovery
- [Bug 696] Extra tcp options for REJECT --reject-with tcp-reset-both / tcp-reset-destination
- [Bug 882] New: The conntrack-tools archive contains some leftovers from a patch run
Wisdom of the Ancients
