| Linode Forum https://forum.linode.com/ |
|
| Replacing rp_filter with iptables https://forum.linode.com/viewtopic.php?f=19&t=4260 |
Page 1 of 1 |
| Author: | mikeage [ Sun May 24, 2009 8:37 am ] |
| Post subject: | Replacing rp_filter with iptables |
I've had to disable rp_filter for an interface (tun0) for an OpenVPN network which uses SNAT and policy based routing (see http://michael.gorven.za.net/blog/2008/ ... ort-number for example). Several sites I found (none of which I can find at the moment, of course), suggested using iptables to mimic the functionality of rp_filter (in my case, I have a packet that was originally sourced from 192.168.1.100 (b/c of the default route) being SNAT'ed to a source of 192.168.2.5 (b/c of the policy route), and rp_filter was rejecting the return packets). I didn't find any instructions anywhere for how to implement rp_filter (where needed) using iptables -- any advice? |
|
| Page 1 of 1 | All times are UTC-04:00 |
| Powered by phpBB® Forum Software © phpBB Group http://www.phpbb.com/ |
|