On Wed, 2012-02-01 at 17:55 +0100, Martin Kosek wrote:
> UDP port checks in ipa-replica-conncheck always returns OK even
> if they are closed by firewall. They cannot be reliably checked
> in the same way as TCP ports as there is no session management as
> in TCP protocol. We cannot guarantee a response on the checked
> side without our own echo server bound to checked port.
> This patch removes UDP port checks altogether so that user gets
> a consistent conncheck report without confusing UDP results.
This patch has been deprecated by patch 222.
Freeipa-devel mailing list