From Bugzilla Helper: User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727) Description of problem: Forward to masquaraded clients is not working in recent Fedora versions. Version-Release number of selected component (if applicable): oidentd-2.0.7-7 How reproducible: Always Steps to Reproduce: 1. set values in oidentd.users file. 2. run oidentd with flags -f -m. Actual Results: All masquaraded clients did not recieve identd information. Additional info: If you manually add some rules in iptables to DNAT/FORWARD identd port (113) to some particular clients they work perfectly.
Was this working with older Fedora Core releases and the same oidentd version? Do you have any idea what might have caused this?
I don't know for sure. I tried to use it on FC2 and failed too. But I remember on RedHat8 (or maybe it was 9) it worked. As I'm not expert in Linux internals, I have no idea what could cause the problem. I think it might be related to core things, such as kernel/iptables/glibc. If you need me to run strace or similar things in my environment, I'll will gladly help. However, I saw this faulty behaviour on other servers too, so you couldn't find trouble reproducing it.
Finally! It seems that this was fixed in new 2.0.8 version. I compiled 2.0.8 on fedora5 and everything works as expected. The problem was that conntrack file format changed in linux 2.6.9. Please rebuild rpm with new version.
More info can be found here: http://dev.ojnk.net/stuff/oidentd.changelog here: http://dev.ojnk.net/stuff/oidentd.news and here: http://devaiso.endi.lt/projects/c/oidentd/linux_2.6.9/
Thanks a lot for all those details! I've just rebuilt 2.0.8 packages for FC-5 and devel, improving a few other details too : - Update to 2.0.8 which fixes bugzilla #173754. - Don't flag init script as %%config. - Rename init script "identd" -> "oidentd", remove pidentd conflict and add update scriplet special case when upgrading from the "identd" service. - Move options into a sysconfig file.