| 22 Nov 2025 |
 hexa (clat on linux when) | * check net.ipv4.conf.{all,wlan0}.rp_filter as well | 16:44:38 |
| hexa (clat on linux when) | because the packets arrive from a link that the system would not use for outgoing traffic towards that src address | 16:45:13 |
 raboof | yeah sysctl net.ipv4.conf | grep filter is all zero's | 16:45:33 |
| hexa (clat on linux when) | the term here is martian | 16:45:55 |
| hexa (clat on linux when) | I would probably put both links into a distinct vrf | 16:46:12 |
| hexa (clat on linux when) | because when you ping 192.168.1.212 hat happens is that a lookup for the return path might short-circuit and go over the ethernet link | 16:46:50 |
| hexa (clat on linux when) | * because when you ping 192.168.1.212 what happens is that a lookup for the return path might short-circuit and go over the ethernet link | 16:47:00 |
| hexa (clat on linux when) | does the kernel still log martian packets to dmesg? 🤔 | 16:47:15 |
| raboof | not sure, dmesg is pretty quiet on this machine at least | 16:47:55 |
| raboof | ha, disabling networking.firewall.checkReversePath seems to have done the trick :). thanks for pointing in that general direction | 16:56:40 |
| hexa (clat on linux when) | yeah, same shit, different stack | 16:59:12 |
| raboof | 
Download out.png | 17:06:17 |
| raboof | yay | 17:06:20 |
| hexa (clat on linux when) | why aren't you buying into orb instead? https://orb.net/ | 17:37:02 |
