Patches item #1671611, was opened at 2007-03-01 11:59
Message generated for change (Comment added) made by axlh
You can respond by visiting:
https://sourcefo
rge.net/tracker/?func=detail&atid=743022&aid=1671611
&group_id=139143
Please note that this message will contain a full copy of
the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Private: No
Submitted By: Marcus Hunger (marcushunger)
Assigned to: Nobody/Anonymous (nobody)
Summary: nathelper: udpping_from (forged udpping source_ip)
Initial Comment:
Hi,
for some loadbalancing setups it might be interessting to
spoof the natping's source-ip on multiple hosts so the pings
would apear to come from the same host. I created a patch
for that. It uses raw-sockets and works for me on linux.
I am not sure, how portable this approach is, so some people
might have a look on this to get it running on other
platforms than linux.
Best regards,
Marcus
------------------------------------------------------------
----------
Comment By: axlh (axlh)
Date: 2007-03-01 14:06
Message:
Logged In: YES
user_id=1212856
Originator: NO
Nice patch. I like the idea, but see 2 issues with the
current
implementation:
1) configuring 1 fixed source_ip doesn't handle a cluster
of
loadbalancers. I suggest using the path info stored in the
location table
instead of the parameter.
2) raw sockets require root privileges. There should be some
way for
OpenSER to drop all other unneccesary privileges when run as
root.
------------------------------------------------------------
----------
You can respond by visiting:
https://sourcefo
rge.net/tracker/?func=detail&atid=743022&aid=1671611
&group_id=139143
_______________________________________________
Devel mailing list
Devel openser.org
htt
p://openser.org/cgi-bin/mailman/listinfo/devel
|
