Magic incantation to mostly fix MacOS 10.6.

It comes down to this: sysctl_set('net.inet.ip.scopedroute', 0) I say "mostly" because actually it doesn't fix it; sshuttle doesn't know what to do with the received connection, so there must be a minor bug remaining somewhere. I'll fix that next. Thanks to dkf <dfortunato@gmail.com> on the sshuttle mailing list for suggesting the magic fix. He points at this post in particular: http://discussions.apple.com/thread.jspa?messageID=11558355&#11558355 that gave him the necessary clue.
author: Avery Pennarun <apenwarr@gmail.com> 2010-09-30 23:19:18 -0700
committer: Avery Pennarun <apenwarr@gmail.com> 2010-10-01 00:05:48 -0700
commit: 410b9d4229b36e60e64f101c1105b90d844e8006 (patch)
tree: 4202d53b454e8a0a3c23b473d6f1ffc6bbd5c9d2
parent: 2ef1c6a4c49824c18ed8ee3dee3d9d76b651c291 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/firewall.py b/firewall.py
index 6025c64..b7110e0 100644
--- a/firewall.py
+++ b/firewall.py
@@ -125,6 +125,7 @@ def do_ipfw(port, subnets):
     if subnets:
         sysctl_set('net.inet.ip.fw.enable', 1)
         sysctl_set('net.inet.ip.forwarding', 1)
+        sysctl_set('net.inet.ip.scopedroute', 0)
 
         ipfw('add', sport, 'accept', 'ip',
              'from', 'any', 'to', 'any', 'established')
author	Avery Pennarun <apenwarr@gmail.com>	2010-09-30 23:19:18 -0700
committer	Avery Pennarun <apenwarr@gmail.com>	2010-10-01 00:05:48 -0700
commit	410b9d4229b36e60e64f101c1105b90d844e8006 (patch)
tree	4202d53b454e8a0a3c23b473d6f1ffc6bbd5c9d2
parent	2ef1c6a4c49824c18ed8ee3dee3d9d76b651c291 (diff)