Alan Cox:
> > Found another one... this fixes an inability to bind to multicast ports in
> > the masq range. The problem prevents me from listening to the IETF mbone
> > video broadcast (channel 1).
>
> Not a nice fix. Just move the Masquerade port range (or maybe make it a sysctl
> set range so you can shuffle it about if needed).
This is about multicasting. I have NO control at all to which port somebody
out there in the Internet binds their video or audio feed. If I reserve a
random 1024-port range for masquerading, the chance is 1:32 (if you exclude
the ports <32768) that it conflicts with _something_ out there; there
already are more than 32 existing sessions on the mbone, and the Mbone
won't shrink either. The range cannot be made changeable by Joe User
either, so would require at least CAP_NET_ADMIN. :-( Currently it cannot
be changed dynamically without breaking existing masqueraded connections,
which is another problem that I won't be able to fix even if I saw the need
to do that.
NB, the error EADDRINUSE is somewhat uncool, since netstat doesn't show the
offending port; EADDRNOTAVAIL might be better.
-- Matthias Urlichs | noris network GmbH | smurf@noris.de | ICQ: 20193661- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/