Re: Upstream bug 39132 - Starting with 3.0.0-rc6, masquerading seems to be broken.

To: debian-kernel@lists.debian.org
Subject: Re: Upstream bug 39132 - Starting with 3.0.0-rc6, masquerading seems to be broken.
From: Bastian Blank <waldi@debian.org>
Date: Mon, 22 Aug 2011 14:20:09 +0200
Message-id: <[🔎] 20110822122009.GB29601@wavehammer.waldi.eu.org>
Mail-followup-to: debian-kernel@lists.debian.org
In-reply-to: <[🔎] CAPwAwVhrgdvZO-d6_=x5ucD+nOdBtGa0XNAM=wmgn3LEBx_0yQ@mail.gmail.com>
References: <[🔎] CAPwAwVhrgdvZO-d6_=x5ucD+nOdBtGa0XNAM=wmgn3LEBx_0yQ@mail.gmail.com>

On Sun, Aug 21, 2011 at 06:42:13PM -0500, Troy Davis wrote:
> -A POSTROUTING -s 192.168.0.64/26 -o eth1 -m multiport -p udp --dport
> 53,123 -j MASQUERADE
> -A POSTROUTING -s 192.168.0.64/26 -o eth1 -m multiport -p tcp --dport
> 22,80,119,443 -j MASQUERADE

This config allows packets with private addresses to escape to eth1. Fix
it.

Bastian

-- 
She won' go Warp 7, Cap'n!  The batteries are dead!

Reply to:

References:
- Upstream bug 39132 - Starting with 3.0.0-rc6, masquerading seems to be broken.
  - From: Troy Davis <troydavis@gmail.com>

Prev by Date: Bug#638172: BUG: soft lockup - CPU#0 stuck for 61s! [qemu-dm:3205]
Next by Date: Bug#618261: udlfb not acting as console
Previous by thread: Upstream bug 39132 - Starting with 3.0.0-rc6, masquerading seems to be broken.
Next by thread: Re: Upstream bug 39132 - Starting with 3.0.0-rc6, masquerading seems to be broken.
Index(es):
- Date
- Thread