Bug 53821
Summary: | ip rules (policy routing) no longer applied consistently | ||
---|---|---|---|
Product: | Networking | Reporter: | Andras Korn (korn-kernel.org) |
Component: | IPV4 | Assignee: | Stephen Hemminger (stephen) |
Status: | NEW --- | ||
Severity: | normal | ||
Priority: | P1 | ||
Hardware: | All | ||
OS: | Linux | ||
Kernel Version: | 3.7 | Subsystem: | |
Regression: | Yes | Bisected commit-id: |
Description
Andras Korn
2013-02-14 09:25:43 UTC
Problem still present in 3.7.10-vs2.3.5.6, fwiw. I'll try to reproduce it without the vserver patch sometime. On a hunch I disabled the DROP rule and it turns out the packets are routed correctly. "ip ro get 2.3.4.5 from 192.168.0" reports the correct route (via 192.168.0.144 dev br0) and that's also where the kernel sends the packets. The only problem seems to be that the netfilter rule in the OUTPUT chain of the filter table is not aware of the final routing decision, which is at the very least counter-intuitive. |