patch-2.4.26 linux-2.4.26/net/ipv4/netfilter/ip_nat_standalone.c

Next file: linux-2.4.26/net/ipv4/netfilter/ipt_ECN.c
Previous file: linux-2.4.26/net/ipv4/ipvs/ip_vs_wrr.c
Back to the patch index
Back to the overall index

Lines: 18
Date: 2004-04-14 06:05:41.000000000 -0700
Orig file: linux-2.4.25/net/ipv4/netfilter/ip_nat_standalone.c
Orig date: 2004-02-18 05:36:32.000000000 -0800


diff -urN linux-2.4.25/net/ipv4/netfilter/ip_nat_standalone.c linux-2.4.26/net/ipv4/netfilter/ip_nat_standalone.c
@@ -114,7 +114,16 @@
 		WRITE_LOCK(&ip_nat_lock);
 		/* Seen it before?  This can happen for loopback, retrans,
 		   or local packets.. */
-		if (!(info->initialized & (1 << maniptype))) {
+		if (!(info->initialized & (1 << maniptype))
+#ifndef CONFIG_IP_NF_NAT_LOCAL
+		    /* If this session has already been confirmed we must not
+		     * touch it again even if there is no mapping set up.
+		     * Can only happen on local->local traffic with
+		     * CONFIG_IP_NF_NAT_LOCAL disabled.
+		     */
+		    && !(ct->status & IPS_CONFIRMED)
+#endif
+		    ) {
 			unsigned int ret;
 
 			if (ct->master

FUNET's LINUX-ADM group, linux-adm@nic.funet.fi

TCL-scripts by Sam Shen (who was at: slshen@lbl.gov)