In message <[EMAIL PROTECTED]> you write:
> Hi,
>
> I've just spotted a small problem with 2.4.0-test8 running netfilter:
>
> NAT: 3 dropping untracked packet c065d3a0 1 192.168.0.1 -> 192.168.0.9
Yes. The connection tracking code doesn't try to understand broadcast
packets, so when it sees the ping reply, it doesn't recognize it. The
NAT code then drops the (untracked) packet.
The message has been very useful in highlighing connection tracking
problems in the past 8).
If you don't mind your box `leaking', you can simply comment out this
message and make NAT return NF_ACCEPT for this.
Rusty.
--
Hacking time.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [EMAIL PROTECTED]
Please read the FAQ at http://www.tux.org/lkml/
