[Freeipa-devel] [PATCH] 205 Remove UDP checks from conncheck
Martin Kosek
mkosek at redhat.com
Mon Feb 27 15:42:29 UTC 2012
On Wed, 2012-02-01 at 17:55 +0100, Martin Kosek wrote:
> UDP port checks in ipa-replica-conncheck always returns OK even
> if they are closed by firewall. They cannot be reliably checked
> in the same way as TCP ports as there is no session management as
> in TCP protocol. We cannot guarantee a response on the checked
> side without our own echo server bound to checked port.
>
> This patch removes UDP port checks altogether so that user gets
> a consistent conncheck report without confusing UDP results.
>
> https://fedorahosted.org/freeipa/ticket/2062
>
This patch has been deprecated by patch 222.
Martin
More information about the Freeipa-devel
mailing list