I'll try to take a look. Did the slides help at all?
On Tue, Jul 2, 2019 at 9:52 PM Dk Jack wrote:
> Hi All,
> Can someone take a look at the iptables trace below and see if I am making
> an error with my ATS linux bridge mode configuration? I've been trying to
> configure ATS in linux bridge mo
Hi All,
Can someone take a look at the iptables trace below and see if I am making
an error with my ATS linux bridge mode configuration? I've been trying to
configure ATS in linux bridge mode but have been unsuccessful. I think I've
followed the documentation to the dot. However, the packets are no
I disabled rp_filter. However, I see no change in behavior. The kernel
seems to be dropping it after picking it up from the interface. I can see
the SYN when I do tcpdump on the physical interface. However, I don't see
it on bridge interface (br0). Not sure if that offers a clue. I flushed all
the
I don't think this went through so I'm sending it again.
These are slides from an ApacheCon talk I gave about transparency. Among
the details is a nice check list of things to check when it doesn't work.
https://www.dropbox.com/sh/h7erczfbt8ug8kn/AADJAqNz_xizurIHE6hx8Q8ka?preview=ApacheCon-2013.p
Ah! Yeah, I think you are taking about reverse path filter. I remember checking
for it. But I’ll check again.
Dk.
> On Jun 24, 2019, at 8:31 AM, SUSAN HINRICHS wrote:
>
> Rp_filter is a reverse proxy filter. If enabled, which it is by default, it
> will drop packets that show up on unexpecte
Rp_filter is a reverse proxy filter. If enabled, which it is by default, it
will drop packets that show up on unexpected interfaces. May not be an
issue in the bridge case, but something to look into.
On Sun, Jun 23, 2019, 11:54 PM Dk Jack wrote:
> Hi Susan,
> yes, I've enabled ip_forward. What
See if this helps - among other things it has a check list of issues to
check.
https://www.dropbox.com/sh/h7erczfbt8ug8kn/AADJAqNz_xizurIHE6hx8Q8ka
This is available from the wiki, under "Presentations", back from 2013.
On Sun, Jun 23, 2019 at 11:54 PM Dk Jack wrote:
> Hi Susan,
> yes, I've enab
Hi Susan,
yes, I've enabled ip_forward. What's an rp_filter? Haven't checked
/var/log/messages...
Bhasker.
On Sun, Jun 23, 2019 at 8:01 PM SUSAN HINRICHS wrote:
> It seems like it takes me a couple days of fiddling each time I have to set
> up transparent mode.
>
> Have you enabled ip_forward?
It seems like it takes me a couple days of fiddling each time I have to set
up transparent mode.
Have you enabled ip_forward? Have you disabled rp_filter? Are you seeing
Martian messages in your /bar/log/messages?
On Sun, Jun 23, 2019, 7:23 PM Dk Jack wrote:
> Hi,
> I am trying to test ATS in
