[Devel] [ openser-Patches-1671611 ] nathelper: udpping_from (forged
udpping source_ip)
SourceForge.net
noreply at sourceforge.net
Thu Mar 1 14:06:59 CET 2007
Patches item #1671611, was opened at 2007-03-01 11:59
Message generated for change (Comment added) made by axlh
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=743022&aid=1671611&group_id=139143
Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Private: No
Submitted By: Marcus Hunger (marcushunger)
Assigned to: Nobody/Anonymous (nobody)
Summary: nathelper: udpping_from (forged udpping source_ip)
Initial Comment:
Hi,
for some loadbalancing setups it might be interessting to spoof the natping's source-ip on multiple hosts so the pings would apear to come from the same host. I created a patch for that. It uses raw-sockets and works for me on linux.
I am not sure, how portable this approach is, so some people might have a look on this to get it running on other platforms than linux.
Best regards,
Marcus
----------------------------------------------------------------------
Comment By: axlh (axlh)
Date: 2007-03-01 14:06
Message:
Logged In: YES
user_id=1212856
Originator: NO
Nice patch. I like the idea, but see 2 issues with the current
implementation:
1) configuring 1 fixed source_ip doesn't handle a cluster of
loadbalancers. I suggest using the path info stored in the location table
instead of the parameter.
2) raw sockets require root privileges. There should be some way for
OpenSER to drop all other unneccesary privileges when run as root.
----------------------------------------------------------------------
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=743022&aid=1671611&group_id=139143
More information about the Devel
mailing list