OpenE2K/linux
6
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
8b83bc77bf
linux/net
History
Harald Welte 8b83bc77bf [PATCH] don't try to do any NAT on untracked connections 
With the introduction of 'rustynat' in 2.6.11, the old tricks of preventing
NAT of 'untracked' connections (e.g. NOTRACK target in 'raw' table) are no
longer sufficient.

The ip_conntrack_untracked.status |= IPS_NAT_DONE_MASK effectively
prevents iteration of the 'nat' table, but doesn't prevent nat_packet()
to be executed.  Since nr_manips is gone in 'rustynat', nat_packet() now
implicitly thinks that it has to do NAT on the packet.

This patch fixes that problem by explicitly checking for
ip_conntrack_untracked in ip_nat_fn().

Signed-off-by: Harald Welte <laforge@netfilter.org>
Signed-off-by: Linus Torvalds <torvalds@osdl.org>
2005-08-08 11:48:28 -07:00
..
802
8021q
appletalk
atm [ATM]: Trivial spelling fix patch for net/Kconfig 2005-07-19 13:56:53 -07:00
ax25
bluetooth [Bluetooth] Add direction and timestamp to stack internal events 2005-08-06 12:36:54 +02:00
bridge [NET]: BRIDGE_EBT_ARPREPLY must depend on INET 2005-07-19 14:00:13 -07:00
core [NET] Fix too aggressive backoff in dst garbage collection 2005-07-30 17:47:25 -07:00
decnet
econet
ethernet
ipv4 [PATCH] don't try to do any NAT on untracked connections 2005-08-08 11:48:28 -07:00
ipv6 [NET]: fix oops after tunnel module unload 2005-07-30 17:46:44 -07:00
ipx
irda
key
lapb
llc
netlink
netrom
packet
rose
rxrpc
sched [EMATCH]: Remove feature ifdefs in meta ematch. 2005-07-24 19:44:23 -07:00
sctp
sunrpc
unix
wanrouter
x25
xfrm [XFRM]: Fix possible overflow of sock->sk_policy 2005-07-26 15:43:17 -07:00
compat.c
Kconfig [NET]: Kconfig: NETCONSOLE and NETPOLL together 2005-07-18 13:45:12 -07:00
Makefile
nonet.c
socket.c
sysctl_net.c
TUNABLE