On Wed, Nov 28, 2018 at 02:47:10AM -0000, Paul D wrote: > feature yet. Specifically, it's introduced in this commit on the > iptables codebase: > https://git.netfilter.org/iptables/commit/?id=8b0da2130b8af3890ef20afb2305f11224bb39ec.
I think this relies upon this kernel feature:
commit 34ce324019e76f6d93768d68343a0e78f464d754 Author: Daniel Borkmann <email address hidden> Date: Fri Dec 20 22:40:29 2013 +0100
netfilter: nf_nat: add full port randomization support
Given the date I'm optimistic that this should be supported in our kernels, but some confirmation would be nice.
The iptables patch looks pretty simple.
It seems like a good candidate for an SRU to me.
Thanks
On Wed, Nov 28, 2018 at 02:47:10AM -0000, Paul D wrote: /git.netfilter. org/iptables/ commit/ ?id=8b0da2130b8 af3890ef20afb23 05f11224bb39ec.
> feature yet. Specifically, it's introduced in this commit on the
> iptables codebase:
> https:/
I think this relies upon this kernel feature:
commit 34ce324019e76f6 d93768d68343a0e 78f464d754
Author: Daniel Borkmann <email address hidden>
Date: Fri Dec 20 22:40:29 2013 +0100
netfilter: nf_nat: add full port randomization support
Given the date I'm optimistic that this should be supported in our
kernels, but some confirmation would be nice.
The iptables patch looks pretty simple.
It seems like a good candidate for an SRU to me.
Thanks