Hi Jukka > > > > What means "not routed properly"? Can we run into any problems when > > disabling > rp_filter but having multiple interfaces/services (e.g. Ethernet and WiFi)? > Is the > actual reason that connman sets rp_filter because of security or are there > any other > reasons? > > See these two bug reports for details for this change: > > https://01.org/jira/browse/CM-360 > https://01.org/jira/browse/CM-375 > >
>From the comments of the mentioned bug reports, I understand that the reason >to change the rp_filter mode is only to relax the mode. The default was >'strict mode' (1) in all issues and they relaxed to 'loose mode' (2). This >solved the problems where 'strict mode' was a too strong policy for that >situation (2+ interfaces, same subnet). But in the case where the default mode is '(0) No source validation', the switch to mode (2) is changing to a more strict mode which can be too strict for a particular situation. Wouldn't it be better to only relax the mode: 0 -> 0 1 -> 2 2 -> 2 So to stay in 'No source validation' if this was set as default policy? Thanks Urs _______________________________________________ connman mailing list [email protected] https://lists.connman.net/mailman/listinfo/connman
