Recently test ipfilter v4.1.13 on Sun Solaris 8 (v240), found interactions between rdr rules.
1. correct scenario, perfect results. # ipnat -l List of active MAP/Redirect filters: rdr bge0 from any to 172.25.141.88/32 port = 30000 -> 172.25.141.54 port = 4080 udp rdr bge0 from any to 172.25.141.88/32 port = 30002 -> 172.25.141.55 port = 4130 udp # snoop udp 172.25.141.54 -> 172.25.141.88 UDP D=30000 S=4130 LEN=24 172.25.141.54 -> 172.25.141.54 UDP D=4080 S=4130 LEN=24 172.25.141.54 -> 172.25.141.88 UDP D=30002 S=4080 LEN=24 172.25.141.54 -> 172.25.141.55 UDP D=4130 S=4080 LEN=24 2. interaction scenario # ipnat -l List of active MAP/Redirect filters: rdr bge0 from any to 172.25.141.88/32 port = 30002 -> 172.25.141.54 port = 4130 udp rdr bge0 from any to 172.25.141.88/32 port = 30000 -> 172.25.141.54 port = 4080 udp NOTE: The rules redirect to same dest ip compare to scenario 1 that redirects to different ip. # snoop udp 172.25.141.54 -> 172.25.141.88 UDP D=30002 S=4080 LEN=24 172.25.141.88 -> 172.25.141.54 UDP D=4130 S=30000 LEN=24 172.25.141.54 -> 172.25.141.88 UDP D=30000 S=4130 LEN=24 172.25.141.88 -> 172.25.141.54 UDP D=4080 S=30002 LEN=24 &%$@: The source ip and port of outgoing packets are accidentally changed. Need you help to fix it, Thanks a lot. -- Regards, James Huang
