Bug#425462: NAT prerouting over tun interface broken

To: 425462@bugs.debian.org
Cc: procps@packages.debian.org
Subject: Bug#425462: NAT prerouting over tun interface broken
From: Frans Pop <elendil@planet.nl>
Date: Mon, 28 May 2007 11:11:40 +0200
Message-id: <200705281111.50525.elendil@planet.nl>
Reply-to: Frans Pop <elendil@planet.nl>, 425462@bugs.debian.org
In-reply-to: <200705212236.22057.elendil@planet.nl>
References: <200705212236.22057.elendil@planet.nl>

(CC maintainer of procps as a heads-up)

On Monday 21 May 2007 22:36, Frans Pop wrote:
> My hercules s/390 emulator no longer receives packets sent from other
> boxes to the external IP address it has on the host system. It appears
> that iptables prerouting is broken somehow.

Update on this issue (more details in upstream BR).

The cause of the change in behavior has been traced to the following 
upstream commit: 8030f54499925d073a88c09f30d5d844fb1b3190

Somehow this causes default ipv4 settings defined in /etc/sysctl.conf to 
no longer be applied to eth0.

In my /etc/sysctl.conf I have:
net.ipv4.conf.default.rp_filter=1
net.ipv4.conf.default.forwarding=1

But after booting with a kernel with that change, these values are no 
longer applied for eth0:
$ cat /proc/sys/net/ipv4/conf/eth0/rp_filter:
0
$ cat /proc/sys/net/ipv4/conf/eth0/forwarding:
0

Attachment: pgpEcF4ulRvRz.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Bug#425462: NAT prerouting over tun interface broken
  - From: Frans Pop <elendil@planet.nl>

References:
- Bug#425462: NAT prerouting over tun interface broken
  - From: Frans Pop <elendil@planet.nl>

Prev by Date: Bug#426210: linux-2.6: could ams module be enabled on apple platforms like powerbooks?
Next by Date: Processed: your mail
Previous by thread: Bug#425462: NAT prerouting over tun interface broken
Next by thread: Bug#425462: NAT prerouting over tun interface broken
Index(es):
- Date
- Thread