]> err.no Git - linux-2.6/commit
[NETFILTER] PPTP helper: fix PNS-PAC expectation call id
authorPhilip Craig <philipc@snapgear.com>
Wed, 9 Nov 2005 21:01:53 +0000 (13:01 -0800)
committerDavid S. Miller <davem@davemloft.net>
Wed, 9 Nov 2005 21:01:53 +0000 (13:01 -0800)
commit5978a9b82c55b82a1087bd86e0ae8b00f94d0d0b
tree1f24eed476d8e23116714ae16a947fcac855dfa5
parent81e5c27d08bb39e646fe822ea80ab8feba62b94d
[NETFILTER] PPTP helper: fix PNS-PAC expectation call id

The reply tuple of the PNS->PAC expectation was using the wrong call id.

So we had the following situation:
- PNS behind NAT firewall
- PNS call id requires NATing
- PNS->PAC gre packet arrives first

then the PNS->PAC expectation is matched, and the other expectation
is deleted, but the PAC->PNS gre packets do not match the gre conntrack
because the call id is wrong.

We also cannot use ip_nat_follow_master().

Signed-off-by: Philip Craig <philipc@snapgear.com>
Signed-off-by: Harald Welte <laforge@netfilter.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
net/ipv4/netfilter/ip_nat_helper_pptp.c