Home Explore Help
Register Sign In
phyus
/
linux-vybrid_public
8
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

[NETFILTER]: nf_nat_pptp: fix expectation removal

When removing the expectation for the opposite direction, the PPTP NAT
helper initializes the tuple for lookup with the addresses of the
opposite direction, which makes the lookup fail.

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
Patrick McHardy 18 years ago
parent
c72c6b2a29
commit
a46bf7d5a8
1 changed files with 2 additions and 2 deletions
Unified View Show Diff Stats
  1. 2 2
      net/ipv4/netfilter/nf_nat_pptp.c

+ 2 - 2
net/ipv4/netfilter/nf_nat_pptp.c
View File 

@@ -72,9 +72,9 @@ static void pptp_nat_expected(struct nf_conn *ct,
 
 		DEBUGP("we are PAC->PNS\n");
 
 		DEBUGP("we are PAC->PNS\n");
 
 		/* build tuple for PNS->PAC */
 
 		/* build tuple for PNS->PAC */
 
 		t.src.l3num = AF_INET;
 
 		t.src.l3num = AF_INET;
 
-		t.src.u3.ip = master->tuplehash[exp->dir].tuple.src.u3.ip;
 
+		t.src.u3.ip = master->tuplehash[!exp->dir].tuple.src.u3.ip;
 
 		t.src.u.gre.key = nat_pptp_info->pns_call_id;
 
 		t.src.u.gre.key = nat_pptp_info->pns_call_id;
 
-		t.dst.u3.ip = master->tuplehash[exp->dir].tuple.dst.u3.ip;
 
+		t.dst.u3.ip = master->tuplehash[!exp->dir].tuple.dst.u3.ip;
 
 		t.dst.u.gre.key = nat_pptp_info->pac_call_id;
 
 		t.dst.u.gre.key = nat_pptp_info->pac_call_id;
 
 		t.dst.protonum = IPPROTO_GRE;
 
 		t.dst.protonum = IPPROTO_GRE;
 
 	}
 
 	}