]> git.karo-electronics.de Git - linux-beck.git/commit
netfilter: nf_nat: place conntrack in source hash after SNAT is done
authorChangli Gao <xiaosuo@gmail.com>
Thu, 20 Jan 2011 14:49:52 +0000 (15:49 +0100)
committerPatrick McHardy <kaber@trash.net>
Thu, 20 Jan 2011 14:49:52 +0000 (15:49 +0100)
commit41a7cab6d329039d614ca5f0f87aff2dfd90637c
treeae4f721c29b3fa5f80820f520850d5c909d04786
parent4cda47d2e7b21b0b41e44dbe4cd9804fea2d30e9
netfilter: nf_nat: place conntrack in source hash after SNAT is done

If SNAT isn't done, the wrong info maybe got by the other cts.

As the filter table is after DNAT table, the packets dropped in filter
table also bother bysource hash table.

Signed-off-by: Changli Gao <xiaosuo@gmail.com>
Signed-off-by: Patrick McHardy <kaber@trash.net>
net/ipv4/netfilter/nf_nat_core.c