[Bug 201590] Zerowindow packets escape stateful in-kernel NAT
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Thu Jul 23 15:38:47 UTC 2015
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=201590
--- Comment #7 from g_amanakis at yahoo.com ---
(In reply to smithi from comment #6)
I think this has nothing to do with the local interface, simply because the
keepalive packets are generated from the *gateway* through ipfw_dyn_send_ka().
Commenting out the function resolves the symptoms. The actual sending takes
place in check_dyn_rules() through ip_output().
The keepalive seems to be generated from the gateway on the basis of the
dynamic rule, and this is before the outgoing NAT takes place, i.e. with the IP
of the LAN.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-net
mailing list