David A. Ranch <[EMAIL PROTECTED]> wrote:
>
> Are you trying to say that you want to originate traffic on udp4901 from
> a MASQed machine and you want the reply to come BACK on udp4901?
Well, I think what he means is that he wants to be able to send a packet
out with a specific source port, and be able to receive a reply back
when directed to that port.
> If this is the case.. I beleive you are going to be out of luck.
> Once IPPORTFW reserves a given port, I beleive the port is then
> considered used and the Linux kernel won't for anything else.
Your comment about ipportfw doesn't apply here, because that port will
only be reserved as far as the masq box is concerned. That is, the masq
box will have trouble if it tries to send out a packet with that source
port. However, your comment about being out of luck is certainly true,
because the masq box will re-orient the source port into a high range
(greater than 61000, I think), so that the packet can be recognized as a
masq connection when it is replied to. This means your packet will not
leave the masq box with a source port of 4901, but instead some random
high-numbered port. If your remote machine replies to that port, it
will be masqueraded back to 4901, but the remote machine will not see
your packets as originating from port 4901.
I recommend udpredir, or similar.
--
[EMAIL PROTECTED] (Fuzzy Fox) || "Nothing takes the taste out of peanut
sometimes known as David DeSimone || butter quite like unrequited love."
http://www.dallas.net/~fox/ || -- Charlie Brown
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
