netbsd-bugs: kern/23648: ipnat redirection limit

Subject: kern/23648: ipnat redirection limit
To: None <gnats-bugs@gnats.netbsd.org>
From: None <kefren@netbastards.org>
List: netbsd-bugs
Date: 12/04/2003 12:34:54

>Number:         23648
>Category:       kern
>Synopsis:       ipnat RDR limit
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    kern-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Thu Dec 04 10:36:01 UTC 2003
>Closed-Date:
>Last-Modified:
>Originator:     Mihai CHELARU
>Release:        NetBSD 1.6.2_RC3
>Organization:
	
None.
>Environment:
	
	
System: NetBSD xxx-xxx.xxx-xxx.com 1.6.2_RC3 NetBSD 1.6.2_RC3 (Kefren) #7: Tue Dec 2 18:11:51 EET 2003 root@xxx-xxx.xxx-xxx.com:/usr/src/sys/arch/i386/compile/Kefren i386
Architecture: i386
Machine: i386
>Description:
	
	# cat /etc/ipnat.conf
	rdr bge0 0.0.0.0/0 port 80 -> 11.11.0.176 port 3128
	# ipnat -l | grep RDR | wc -l
	     250

	this rule is working only when there are less than 256 redirections. When this number of connections
	is greater than 255 the redirection is not made. Quite disturbing in case of a transparent proxy.

>How-To-Repeat:
	
>Fix:
	
>Release-Note:
>Audit-Trail:
>Unformatted: