On 20/3/23 17:21, to...@tuxteam.de wrote:
I get the impression the problem is to send return traffic back out on the
interface it came in on.
If this is it, then rp_filter, as I proposed elsewhere in this
thread, seems like exactly made for this.
I'm afraid poking kernel parameters is beyond my pay grade, but I can
just about do a nat and firewall using iptables.
I was thinking it should be possible to use iptables to do connection
tracking and return data on the incoming interface, or better, prefer to
return on that but use the other interface if not possible
--
Jeremy
(Lists)
