diff options
| author | Simon Rettberg | 2014-01-13 14:10:01 +0100 |
|---|---|---|
| committer | Simon Rettberg | 2014-01-13 14:10:01 +0100 |
| commit | ec6be62b6619b5c261e61712cfff1ed544f3a858 (patch) | |
| tree | ea759a1120882828f099b1a3700cfd65789fb9f7 /remote/modules | |
| parent | [rfs-stage31] Don't wait for br0 up if /sys/.../operstate doesn't exist (diff) | |
| download | tm-scripts-ec6be62b6619b5c261e61712cfff1ed544f3a858.tar.gz tm-scripts-ec6be62b6619b5c261e61712cfff1ed544f3a858.tar.xz tm-scripts-ec6be62b6619b5c261e61712cfff1ed544f3a858.zip | |
[vmchooser] Refining iptables MASQUERADE rule to work around an issue where incoming broadcast packets get their *source* address set to the local br0 address, although the old rule clearly stated to only masquerade outgoing packets (-o br0)
Diffstat (limited to 'remote/modules')
| -rwxr-xr-x | remote/modules/vmchooser/data/opt/openslx/scripts/systemd-vmchooser_env | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/remote/modules/vmchooser/data/opt/openslx/scripts/systemd-vmchooser_env b/remote/modules/vmchooser/data/opt/openslx/scripts/systemd-vmchooser_env index 913d9de6..3358a85f 100755 --- a/remote/modules/vmchooser/data/opt/openslx/scripts/systemd-vmchooser_env +++ b/remote/modules/vmchooser/data/opt/openslx/scripts/systemd-vmchooser_env @@ -155,7 +155,7 @@ ip link set dev nat1 up ip addr add 192.168.101.1/24 dev nat1 echo "1" >/proc/sys/net/ipv4/conf/nat1/forwarding echo "1" >/proc/sys/net/ipv4/conf/br0/forwarding 2>/dev/null -iptables -t nat -A POSTROUTING -o br0 -j MASQUERADE +iptables -t nat -A POSTROUTING -o br0 -s 192.168.0.0/16 -j MASQUERADE for wait in 1 1 2 2 3 end; do grep '^SLX_DNS' "/opt/openslx/config" > /dev/null && break |