From d0b04a271e3105ec77dfa444395f3bbafd5fccad Mon Sep 17 00:00:00 2001
From: laforge <laforge>
Date: Tue, 23 Jul 2002 13:44:41 +0000
Subject: add hint about local-nat.patch to KNOWN_BUGS, make libipt_ecn work

---
 KNOWN_BUGS | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

(limited to 'KNOWN_BUGS')

diff --git a/KNOWN_BUGS b/KNOWN_BUGS
index 8d0b547..96009f6 100644
--- a/KNOWN_BUGS
+++ b/KNOWN_BUGS
@@ -1,10 +1,14 @@
 Known bugs:
 
-1) NAT in the OUTPUT chain does not work in stock kernels.  However,
-   there is a patch in patch-o-matic, called the 'local-nat.patch'. 
-   This patch adds a CONFIG_NF_IP_NAT_LOCAL kernel config option.
+1) NAT in the OUTPUT chain only works since kernel 2.4.18.  However,
+   there is a patch for previous kernels in patch-o-matic, called the
+   'local-nat.patch'.  This patch adds a CONFIG_NF_IP_NAT_LOCAL kernel config
+   option.
 
 2) tcpdump traffic is corrupted by OUTPUT NAT.
 
 3) Connection tracking doesn't wait very long for reply FIN, meaning
    that half-closed pipes can time out early (seen frequently with squid).
+
+4) When you use ip6tables packet mangling on IPv6 packets, the packet will
+   not be re-routed in case e.g. you insert a routing header.
-- 
cgit v1.2.3