From ca024045c6f8b1fd19c928db861c3437bdc705a6 Mon Sep 17 00:00:00 2001 From: Guillaume Nault Date: Wed, 26 Jun 2013 20:50:19 +0200 Subject: [PATCH] l2tp: Unset ephemeral ports by default Disable use of ephemeral ports by default since it poses problems with NAT and wasn't used in earlier versions of accel-ppp. Signed-off-by: Guillaume Nault --- accel-pppd/accel-ppp.conf.5 | 2 +- accel-pppd/ctrl/l2tp/l2tp.c | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/accel-pppd/accel-ppp.conf.5 b/accel-pppd/accel-ppp.conf.5 index 2397023..2faf2ab 100644 --- a/accel-pppd/accel-ppp.conf.5 +++ b/accel-pppd/accel-ppp.conf.5 @@ -462,7 +462,7 @@ AVPs that support it). Specifies if an arbitrary source port is used when replying to a tunnel establishment request. When this option is deactivated, the destination port of the incoming request (SCCRQ) is used as source port for the -reply (SCCRP). Default value is 1. +reply (SCCRP). Default value is 0. .SH [radius] .br Configuration of RADIUS module. diff --git a/accel-pppd/ctrl/l2tp/l2tp.c b/accel-pppd/ctrl/l2tp/l2tp.c index 5f73193..146a03e 100644 --- a/accel-pppd/ctrl/l2tp/l2tp.c +++ b/accel-pppd/ctrl/l2tp/l2tp.c @@ -52,7 +52,7 @@ int conf_verbose = 0; int conf_hide_avps = 0; int conf_avp_permissive = 0; static int conf_port = L2TP_PORT; -static int conf_ephemeral_ports = 1; +static int conf_ephemeral_ports = 0; static int conf_timeout = 60; static int conf_rtimeout = 5; static int conf_retransmit = 5; -- GitLab