Time for me to ask one now.
Got a small challenge. I have a wireless interface in a “station” setting on a bridge that connects one of my systems to the internet, and the masquerade rule uses that interface. If the wireless link is broken (I think military aircraft overflying the site has something to do with the temporary broken connection), it seems to break the masquerade or src-nat rule for a while. Suddenly when the wireless link is established, I have private ip addresses flooding the public net.
Seems the obvious would be to try the “disable-running-check=yes”, Before I try this, is there a down side to this setting?
Any other thoughts?
ADD Eliminated the problem (at least for now) by natting that part of the net, and doing the masquerade on the other side of the wireless connection. If I do not get anything in the address list (my routing-mark test), I will mark this solved.