From: Rusty Russell <rusty@linuxcare.com.au>
Date: Fri, 6 Oct 2000 08:11:40 +0000 (+0000)
Subject: Known bugs for 2.4.0
X-Git-Tag: v1.2.1~86
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=967893bd7535d59e935d46520a210de170c2a165;p=thirdparty%2Fiptables.git

Known bugs for 2.4.0
---

diff --git a/KNOWN_BUGS b/KNOWN_BUGS
new file mode 100644
index 00000000..073f8cd6
--- /dev/null
+++ b/KNOWN_BUGS
@@ -0,0 +1,10 @@
+Known bugs with the 2.4.0 kernel:
+
+1) NAT in the OUTPUT chain does not work in general.  The fix is
+   intrusive, and means we will have a CONFIG_NF_IP_NAT_LOCAL option
+   when it comes back.
+
+2) tcpdump traffic is corrupted by OUTPUT NAT.
+
+3) Connection tracking doesn't wait very long for reply FIN, meaning
+   that half-closed pipes can time out early (seen frequently with squid).