- Trying to exchange iptables with nft, first shot failed.

- Fixed small bug in UDP communicator. - Fixed bug in DV circle test case - Introduced a default value to wait for a reliability ack. - Introduced a FC retransmission threshold together with a retransmission count. - Introduced a original size value for TransportDVBoxMessage - Checking if we have the root pending messge, when removing the pending message from virtual link. - Added delay value to schedule_transmit_on_queue to wait for retransmitting. - Checking for confirmed virtual link, before routing. - Allow unconfirmed queues or DV routes when doing dv encapsulation for control traffic. - Changed check_vl_transmission to also check window size for DV next hop peer. - Fixed fragment box handling to also handle reliability boxed message which needed to be fragmented. - Fixed completing a message which was not only fragmented but also DV boxed. - Added logic to notify core about a new virtual link using distance vector without having validated next neighbour. - Added logic to create a virtual link to handle flow control messages. - fixed several smaller bugs in fragmentation logic. - Changed logic for adding the next_attempt value of PendingMessage.
author: t3sserakt <t3ss@posteo.de> 2022-03-17 14:28:40 +0100
committer: t3sserakt <t3ss@posteo.de> 2022-03-17 14:28:40 +0100
commit: 95a1edacccd9b3bf769a144a12d41946d0ac25dc (patch)
tree: b84608361cd836d29649f076589dd42943d1301f /contrib/netjail/netjail_start.sh
parent: 16c9959d9b395b179446ee4a2cb70f3563c4fb20 (diff)
download: gnunet-95a1edacccd9b3bf769a144a12d41946d0ac25dc.tar.gz
gnunet-95a1edacccd9b3bf769a144a12d41946d0ac25dc.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/contrib/netjail/netjail_start.sh b/contrib/netjail/netjail_start.sh
index f7c417c27..e2d5fd634 100755
--- a/contrib/netjail/netjail_start.sh
+++ b/contrib/netjail/netjail_start.sh
@@ -77,11 +77,15 @@ for N in $(seq $GLOBAL_N); do
    
    if [ "1" == "${R_TCP[$N]}" ]
    then
+        #ip netns exec ${ROUTERS[$N]} nft add rule ip nat prerouting ip daddr $GLOBAL_GROUP.$N tcp dport 60002 counter dnat to $LOCAL_GROUP.1
+        #ip netns exec ${ROUTERS[$N]} nft add rule ip filter FORWARD ip daddr $LOCAL_GROUP.1 ct state new,related,established  counter accept
        ip netns exec ${ROUTERS[$N]} iptables -t nat -A PREROUTING -p tcp -d $GLOBAL_GROUP.$N --dport 60002 -j DNAT --to $LOCAL_GROUP.1
        ip netns exec ${ROUTERS[$N]} iptables -A FORWARD -d $LOCAL_GROUP.1  -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT
    fi
    if [ "1" == "${R_UDP[$N]}" ]
    then
+        #ip netns exec ${ROUTERS[$N]} nft add rule ip nat prerouting ip daddr $GLOBAL_GROUP.$N udp dport $PORT counter dnat to $LOCAL_GROUP.1
+        #ip netns exec ${ROUTERS[$N]} nft add rule ip filter FORWARD ip daddr $LOCAL_GROUP.1 ct state new,related,established  counter accept
        ip netns exec ${ROUTERS[$N]} iptables -t nat -A PREROUTING -p udp -d $GLOBAL_GROUP.$N --dport $PORT -j DNAT --to $LOCAL_GROUP.1
        ip netns exec ${ROUTERS[$N]} iptables -A FORWARD -d $LOCAL_GROUP.1  -m state --state NEW,RELATED,ESTABLISHED -j ACCEPT
    fi
author	t3sserakt <t3ss@posteo.de>	2022-03-17 14:28:40 +0100
committer	t3sserakt <t3ss@posteo.de>	2022-03-17 14:28:40 +0100
commit	95a1edacccd9b3bf769a144a12d41946d0ac25dc (patch)
tree	b84608361cd836d29649f076589dd42943d1301f /contrib/netjail/netjail_start.sh
parent	16c9959d9b395b179446ee4a2cb70f3563c4fb20 (diff)
download	gnunet-95a1edacccd9b3bf769a144a12d41946d0ac25dc.tar.gz gnunet-95a1edacccd9b3bf769a144a12d41946d0ac25dc.zip