7 Jul
2009
7 Jul
'09
1:37 p.m.
Hi, On Tue, Jul 07, 2009 at 07:27:27PM +0800, Adrian Chadd wrote:
Reusing the original port is usually a bad idea. A notable example of things breaking is Netfilter connection tracking, which gets confused if you reuse the exact same endpoints for a different connection.
Hm, so what happens if the client comes along with a local port that the tproxy code has just gone and used? :P
I guess that's not a problem -- haven't had a chance to actually try it, though. Should be fairly easy to test with a tproxy-enabled netcat. -- KOVACS Krisztian