|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
CVS: cvs.openbsd.org: src
From: Joel Sing (jsing
cvs.openbsd.org)
Date: Thu Oct 02 2008 - 10:12:45 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
CVSROOT: /cvs
Module name: src
Changes by: jsingcvs.openbsd.org 2008/10/02 09:12:45
Modified files:
sys/net : pf.c
Log message:
When redirect is used with sticky-address and a matching pass rule uses
reply-to, the sticky-address in the source tracking pool is overwritten
with the reply-to address, resulting in new connections being incorrectly
redirected to the reply-to host (instead of the sticky-address host).
Prevent this by passing a NULL source node reference to pf_map_addr() when
looking up the reply-to host, thus preventing the NAT source node from
being overwritten.
ok mcbride henning
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]