Displaying 1 result from an estimated 1 matches for "sourcenet".
Did you mean:
sourcenat
2007 Mar 14
0
[Bug 554] New: Packet illegaly bypassing SNAT
...tored by
using tcpdump (see reproduction).
Reproduction:
>From my internal computer (${SOURCE}) I scanned an external computer
${VICTIM} (willingly), command is:
nmap -sX ${VICTIM}
On my router I had the command:
tcpdump -v -i ${EXTERNAL_INTERFACE} src net ${SOURCENET}
Rules in use:
iptables -t nat -F
iptables -t forward -F
iptables -t nat -A POSTROUTING -o ${EXTERNAL_INTERFACE} -j SNAT --to-source
${EXTERNAL_IP}
Forwarding was enabled _after_ installing the iptablesrules.
I think that an unusal combination of flags causes that problem and since
"nmap -...