[Swan-dev] has iptables SNAT started assigning random ports?

Andrew Cagney andrew.cagney at gmail.com
Tue Sep 24 21:10:09 UTC 2019

see https://testing.libreswan.org/v3.28-839-g49ccf4dde-master/ikev2-32-nat-rw-rekey/OUTPUT/east.console.verbose.txt
nic# iptables -t nat -A POSTROUTING -s -p udp --sport
4500 -j SNAT --to-source
I'm guessing that, in the past, the first port - 3500 - was assigned
but now a random port - in the above 3633 - is being assigned


PS: I need to tweak a sanitizer so that 3500 isn't sanitized but
that's not the problem here.
PPS: I wish we used 3-digit port numbers in these tests, usermode is
dead and we're running as root

More information about the Swan-dev mailing list