On 5/6/2011 2:41 PM, Jaap Winius wrote: > Quoting Jeffrey Altman <jalt...@secure-endpoints.com>: > >> Which party is behind the NAT? Server or Client? > > The clients. All of the clients are separated from the servers by a > stateful firewall and NAT -- even when the server is local. > > Cheers, > > Jaap
The next question is what do ip_conntrack_udp_timeout and ip_conntrack_udp_timeout_stream actually control? Are those values "timeouts" from the last traffic seen or hard caps on how long a mapping can exist? It sounds like you are experiencing a hard cap. Jeffrey Altman
signature.asc
Description: OpenPGP digital signature