[prev in list] [next in list] [prev in thread] [next in thread] 

List:       netfilter-devel
Subject:    Re: 2.4.22-bk2 and 2.4.23-pre1 broke routing
From:       Patrick McHardy <kaber () trash ! net>
Date:       2003-08-28 14:55:41
[Download RAW message or body]

Please try this patch, i think it should fix it.

Regards,
Patrick

Robert L. Harris wrote:

>I'm running 2.4.22 now and have a NAT behind my firewall as well as IPv6
>happily run through unixcore.com.  I upgraded to 2.4.22-bk2 last night
>to fix an odd problem where I can't ssh-6 to one host.  All of a sudden
>it all works within the nat but nothing behind the firewall can get out
>from behind to the real work though the firewall still can.  Recompiled
>trying 2.4.23-pre1 and I get the exact same behavior.  All 3 use the
>same .config file.
>
>The only noticable change I can see is a bunch of messages:
>
>Aug 27 22:09:10 wally kernel: MASQUERADE: No route: Rusty's brain broke!
>Aug 27 22:09:16 wally kernel: MASQUERADE: No route: Rusty's brain broke!
>Aug 27 22:09:16 wally kernel: MASQUERADE: No route: Rusty's brain broke!
>
>
>As soon as I reverted to 2.4.22 everything works great again.  Attaching
>my .config.  Please contact me directly if you need any additional
>testing done.
>  
>

["x.diff" (text/plain)]

===== net/ipv4/netfilter/ipt_MASQUERADE.c 1.6 vs edited =====
--- 1.6/net/ipv4/netfilter/ipt_MASQUERADE.c	Tue Aug 12 11:30:12 2003
+++ edited/net/ipv4/netfilter/ipt_MASQUERADE.c	Thu Aug 28 16:54:15 2003
@@ -90,6 +90,7 @@
 #ifdef CONFIG_IP_ROUTE_FWMARK
 	key.fwmark = (*pskb)->nfmark;
 #endif
+	key.oif = 0;
 	if (ip_route_output_key(&rt, &key) != 0) {
                 /* Funky routing can do this. */
                 if (net_ratelimit())


[prev in list] [next in list] [prev in thread] [next in thread]