Re: help programming NAT
From: Tauno Voipio (tauno.voipio_at_iki.fi.NOSPAM.invalid)
Date: 09/09/05
- Previous message: Diego Billi: "Re: help programming NAT"
- In reply to: Giacomo: "help programming NAT"
- Next in thread: Giacomo: "Re: help programming NAT"
- Reply: Giacomo: "Re: help programming NAT"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Fri, 09 Sep 2005 21:08:45 GMT
Giacomo wrote:
> Good morning.
> I'm writing a nat module for study purposes in linux kernel.
>
> I do NAT, changing addresses and port in network packets (outgoing and
> coming back)
> Then i recalculate checksum.
>
> i don't mangle payload (not interested in ftp).
>
> Should i do any other adjustment? (TCP window, seq/ack) ?
>
> I think it should be enough, since process should be transparent to hosts
> behind nat machine,
> the fact is that in some networks it works fine, in other networks
> communication fails.
>
> Tried changing mtu and clamp-tcpmss-to-pmtu with no effect.
Did you remember to change both the IP checksum and the TCP
header checksum?
Get Ethereal and have a look at the mangled packets. It
will tell you which part is not right.
-- Tauno Voipio tauno voipio (at) iki fi
- Previous message: Diego Billi: "Re: help programming NAT"
- In reply to: Giacomo: "help programming NAT"
- Next in thread: Giacomo: "Re: help programming NAT"
- Reply: Giacomo: "Re: help programming NAT"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
