Re: 2.4.22-bk2 and 2.4.23-pre1 broke routing

Re: 2.4.22-bk2 and 2.4.23-pre1 broke routing

[Marcelo Tosatti]

David?


---------------------------

I'm running 2.4.22 now and have a NAT behind my firewall as well as IPv6
happily run through unixcore.com.  I upgraded to 2.4.22-bk2 last night
to fix an odd problem where I can't ssh-6 to one host.  All of a sudden
it all works within the nat but nothing behind the firewall can get out
from behind to the real work though the firewall still can.  Recompiled
trying 2.4.23-pre1 and I get the exact same behavior.  All 3 use the
same .config file.

The only noticable change I can see is a bunch of messages:

Aug 27 22:09:10 wally kernel: MASQUERADE: No route: Rusty's brain broke!
Aug 27 22:09:16 wally kernel: MASQUERADE: No route: Rusty's brain broke!
Aug 27 22:09:16 wally kernel: MASQUERADE: No route: Rusty's brain broke!


As soon as I reverted to 2.4.22 everything works great again.  Attaching
my .config.  Please contact me directly if you need any additional
testing done.

Dual AMD Athalon
512Megs of ram
00:0a.1 I2O: Distributed Processing Technology SmartRAID V Controller (rev
02)
  (Adaptec I20 SCSI controller, no hardware or software raid in use
though)
00:0c.0 Ethernet controller: Intel Corp. 82557/8/9 [Ethernet Pro 100] (rev
02)
00:0d.0 Ethernet controller: Lite-On Communications Inc LNE100TX (rev 20)

Robert

Re: 2.4.22-bk2 and 2.4.23-pre1 broke routing

[Patrick McHardy]

[-- Attachment #1: Type: text/plain, Size: 896 bytes --]

It's fixed by this patch. (tested by Hans Lambrechts).

Best regards,
Patrick

Marcelo Tosatti wrote:

>David?
>
>
>---------------------------
>
>I'm running 2.4.22 now and have a NAT behind my firewall as well as IPv6
>happily run through unixcore.com.  I upgraded to 2.4.22-bk2 last night
>to fix an odd problem where I can't ssh-6 to one host.  All of a sudden
>it all works within the nat but nothing behind the firewall can get out
>from behind to the real work though the firewall still can.  Recompiled
>trying 2.4.23-pre1 and I get the exact same behavior.  All 3 use the
>same .config file.
>
>The only noticable change I can see is a bunch of messages:
>
>Aug 27 22:09:10 wally kernel: MASQUERADE: No route: Rusty's brain broke!
>Aug 27 22:09:16 wally kernel: MASQUERADE: No route: Rusty's brain broke!
>Aug 27 22:09:16 wally kernel: MASQUERADE: No route: Rusty's brain broke!
>
>  
>

[-- Attachment #2: x.diff --]
[-- Type: text/plain, Size: 440 bytes --]

===== net/ipv4/netfilter/ipt_MASQUERADE.c 1.6 vs edited =====
--- 1.6/net/ipv4/netfilter/ipt_MASQUERADE.c	Tue Aug 12 11:30:12 2003
+++ edited/net/ipv4/netfilter/ipt_MASQUERADE.c	Thu Aug 28 16:54:15 2003
@@ -90,6 +90,7 @@
 #ifdef CONFIG_IP_ROUTE_FWMARK
 	key.fwmark = (*pskb)->nfmark;
 #endif
+	key.oif = 0;
 	if (ip_route_output_key(&rt, &key) != 0) {
                 /* Funky routing can do this. */
                 if (net_ratelimit())

Re: 2.4.22-bk2 and 2.4.23-pre1 broke routing

[David S. Miller]

On Thu, 28 Aug 2003 18:01:54 +0200
Patrick McHardy <kaber@trash.net> wrote:

> It's fixed by this patch. (tested by Hans Lambrechts).

Please submit this fix to the netfilter maintainers, I'd
like them to review the change and submit it to me.

Re: 2.4.22-bk2 and 2.4.23-pre1 broke routing

[Patrick McHardy]

[-- Attachment #1: Type: text/plain, Size: 1002 bytes --]

Please try this patch, i think it should fix it.

Regards,
Patrick

Robert L. Harris wrote:

>I'm running 2.4.22 now and have a NAT behind my firewall as well as IPv6
>happily run through unixcore.com.  I upgraded to 2.4.22-bk2 last night
>to fix an odd problem where I can't ssh-6 to one host.  All of a sudden
>it all works within the nat but nothing behind the firewall can get out
>from behind to the real work though the firewall still can.  Recompiled
>trying 2.4.23-pre1 and I get the exact same behavior.  All 3 use the
>same .config file.
>
>The only noticable change I can see is a bunch of messages:
>
>Aug 27 22:09:10 wally kernel: MASQUERADE: No route: Rusty's brain broke!
>Aug 27 22:09:16 wally kernel: MASQUERADE: No route: Rusty's brain broke!
>Aug 27 22:09:16 wally kernel: MASQUERADE: No route: Rusty's brain broke!
>
>
>As soon as I reverted to 2.4.22 everything works great again.  Attaching
>my .config.  Please contact me directly if you need any additional
>testing done.
>  
>

[-- Attachment #2: x.diff --]
[-- Type: text/plain, Size: 440 bytes --]

===== net/ipv4/netfilter/ipt_MASQUERADE.c 1.6 vs edited =====
--- 1.6/net/ipv4/netfilter/ipt_MASQUERADE.c	Tue Aug 12 11:30:12 2003
+++ edited/net/ipv4/netfilter/ipt_MASQUERADE.c	Thu Aug 28 16:54:15 2003
@@ -90,6 +90,7 @@
 #ifdef CONFIG_IP_ROUTE_FWMARK
 	key.fwmark = (*pskb)->nfmark;
 #endif
+	key.oif = 0;
 	if (ip_route_output_key(&rt, &key) != 0) {
                 /* Funky routing can do this. */
                 if (net_ratelimit())

2.4.22-bk2 and 2.4.23-pre1 broke routing

[Robert L. Harris]

[-- Attachment #1: Type: text/plain, Size: 1709 bytes --]



I'm running 2.4.22 now and have a NAT behind my firewall as well as IPv6
happily run through unixcore.com.  I upgraded to 2.4.22-bk2 last night
to fix an odd problem where I can't ssh-6 to one host.  All of a sudden
it all works within the nat but nothing behind the firewall can get out
from behind to the real work though the firewall still can.  Recompiled
trying 2.4.23-pre1 and I get the exact same behavior.  All 3 use the
same .config file.

The only noticable change I can see is a bunch of messages:

Aug 27 22:09:10 wally kernel: MASQUERADE: No route: Rusty's brain broke!
Aug 27 22:09:16 wally kernel: MASQUERADE: No route: Rusty's brain broke!
Aug 27 22:09:16 wally kernel: MASQUERADE: No route: Rusty's brain broke!


As soon as I reverted to 2.4.22 everything works great again.  Attaching
my .config.  Please contact me directly if you need any additional
testing done.

Dual AMD Athalon
512Megs of ram
00:0a.1 I2O: Distributed Processing Technology SmartRAID V Controller (rev 02)
  (Adaptec I20 SCSI controller, no hardware or software raid in use though)
00:0c.0 Ethernet controller: Intel Corp. 82557/8/9 [Ethernet Pro 100] (rev 02)
00:0d.0 Ethernet controller: Lite-On Communications Inc LNE100TX (rev 20)

Robert


:wq!
---------------------------------------------------------------------------
Robert L. Harris                     | GPG Key ID: E344DA3B
                                         @ x-hkp://pgp.mit.edu
DISCLAIMER:
      These are MY OPINIONS ALONE.  I speak for no-one else.

Life is not a destination, it's a journey.
  Microsoft produces 15 car pileups on the highway.
    Don't stop traffic to stand and gawk at the tragedy.

[-- Attachment #2: Type: application/pgp-signature, Size: 189 bytes --]