Red Hat Bugzilla – Bug 87762
tcp hangs when session masqueraded
Last modified: 2007-04-18 12:52:41 EDT
From Bugzilla Helper:
User-Agent: Mozilla/5.0 Galeon/1.2.9 (X11; Linux i686; U;) Gecko/20030314
Description of problem:
If you route through a pair of Redhat 8 boxes that have a cipe tunnel between
them, and use iptables to masquerade the SA(source address) on the remote router
tcp sessions will hang.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Establish cipe tunnel between two gateways
2. Masquerade SA on remote routes
3. Do any high packet rate tcp session
Actual Results: TCP session hangs
Expected Results: TCP session does not hang
This is seriously broken, should be enough justification to go to 1.5.4.
The backwards compatability issues are not an issue according to posts I have
seen from Olaf on the upgrade cipe bug.
Since you guys don't include cipe in any newer releases this is