用作转发时会创建大量 TCP 连接 #36
Description
按照 docs/mimic-as-forwarder.md 转发其他机器的 wireguard 流量
一启动 mimic 就会持续创建 TCP 连接, conntrack 也有对应项目(UDP+TCP)
目前用 masquerade to :1024-1026 匹配,可以限制连接增长
使用用户态的 udp 转发没有此问题,但是性能不够
Info 192.168.50.90:13781 => X.X.X.X:2443 :: initializing connection
Debug 192.168.50.90:13781 => X.X.X.X:2443 :: userspace received packet, udp.len=136, csum_partial=0
Info 192.168.50.90:13781 => X.X.X.X:2443 :: connection established
Debug 192.168.50.90:13781 => X.X.X.X:2443 :: pktbuf_consume: trying to bind 192.168.50.90
Info 192.168.50.90:48659 => X.X.X.X:2443 :: initializing connection
Debug 192.168.50.90:48659 => X.X.X.X:2443 :: userspace received packet, udp.len=136, csum_partial=0
Info 192.168.50.90:48659 => X.X.X.X:2443 :: retry sending SYN
Info 192.168.50.90:48659 => X.X.X.X:2443 :: connection established
Debug 192.168.50.90:48659 => X.X.X.X:2443 :: pktbuf_consume: trying to bind 192.168.50.90
Info 192.168.50.90:27648 => X.X.X.X:2443 :: initializing connection
Debug 192.168.50.90:27648 => X.X.X.X:2443 :: userspace received packet, udp.len=136, csum_partial=0
Info 192.168.50.90:27648 => X.X.X.X:2443 :: connection established
Debug 192.168.50.90:27648 => X.X.X.X:2443 :: pktbuf_consume: trying to bind 192.168.50.90
Info 192.168.50.90:42455 => X.X.X.X:2443 :: initializing connection
Debug 192.168.50.90:42455 => X.X.X.X:2443 :: userspace received packet, udp.len=136, csum_partial=0
Info 192.168.50.90:42455 => X.X.X.X:2443 :: retry sending SYN
Info 192.168.50.90:42455 => X.X.X.X:2443 :: connection established
Debug 192.168.50.90:42455 => X.X.X.X:2443 :: pktbuf_consume: trying to bind 192.168.50.90
Info 192.168.50.90:42211 => X.X.X.X:2443 :: initializing connection
Debug 192.168.50.90:42211 => X.X.X.X:2443 :: userspace received packet, udp.len=136, csum_partial=0
Info 192.168.50.90:42211 => X.X.X.X:2443 :: connection established
Debug 192.168.50.90:42211 => X.X.X.X:2443 :: pktbuf_consume: trying to bind 192.168.50.90
Info 192.168.50.90:3077 => X.X.X.X:2443 :: initializing connection
Debug 192.168.50.90:3077 => X.X.X.X:2443 :: userspace received packet, udp.len=136, csum_partial=0
Info 192.168.50.90:3077 => X.X.X.X:2443 :: connection established
Debug 192.168.50.90:3077 => X.X.X.X:2443 :: pktbuf_consume: trying to bind 192.168.50.90
Info 192.168.50.90:26225 => X.X.X.X:2443 :: initializing connection
Debug 192.168.50.90:26225 => X.X.X.X:2443 :: userspace received packet, udp.len=136, csum_partial=0
Info 192.168.50.90:26225 => X.X.X.X:2443 :: connection established
Debug 192.168.50.90:26225 => X.X.X.X:2443 :: pktbuf_consume: trying to bind 192.168.50.90
Info 192.168.50.90:33117 => X.X.X.X:2443 :: initializing connection
Debug 192.168.50.90:33117 => X.X.X.X:2443 :: userspace received packet, udp.len=136, csum_partial=0
Info 192.168.50.90:33117 => X.X.X.X:2443 :: connection established
Debug 192.168.50.90:33117 => X.X.X.X:2443 :: pktbuf_consume: trying to bind 192.168.50.90
Info 192.168.50.90:15886 => X.X.X.X:2443 :: initializing connection
Debug 192.168.50.90:15886 => X.X.X.X:2443 :: userspace received packet, udp.len=136, csum_partial=0
Info 192.168.50.90:15886 => X.X.X.X:2443 :: connection established
Debug 192.168.50.90:15886 => X.X.X.X:2443 :: pktbuf_consume: trying to bind 192.168.50.90
Info 192.168.50.90:45933 => X.X.X.X:2443 :: initializing connection
Debug 192.168.50.90:45933 => X.X.X.X:2443 :: userspace received packet, udp.len=136, csum_partial=0