In article <[email protected]>, Reindl Harald <[email protected]> wrote:
> the thread yesterday reminded me on my Fedora bugrpeort > https://bugzilla.redhat.com/show_bug.cgi?id=1073038#c3 > https://bugzilla.redhat.com/show_bug.cgi?id=1073038#c8 > > i don't buy "Note that destination IP address must be > known and set correctly in reply, otherwise clients > will be confused" because how does it survive NAT What's meant is that the source address of the reply must match the destination address of the request. This is the how TCP behaves automatically, since it involves connections, but all UDP packets are independent. When BIND sends a reply message, the stack doesn't know that it's related to a particular incoming message whose IPs should be flipped. It survives NAT because the router remembers how it translated the incoming packet. When it sees an outgoing packet with the translated IP and port, it undoes the translation. -- Barry Margolin Arlington, MA _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list [email protected] https://lists.isc.org/mailman/listinfo/bind-users
