Neil Parks wrote:
>
> DOS and Windoze machines on the LAN can access the
> internet by specifying the IP of the Linux as their
> "gateway".
So the Linux machine will be doing IP masquerading
for the network (i.e. masking the internal network
addresses and routing all the traffic through a
single external IP address).
> When I run "dmesg" on the Linux, I often find the output
> cluttered with cryptic msgs like the following:
>
> MASQ: failed TCP/UDP checksum from 199.29.68.123!
> MASQ: failed TCP/UDP checksum from 64.124.124.162!
I'm not an expert on IP masquerading, but I'm guessing
that this output is coming from there. As you probably
know, when IP masquerading is set up there are many
parameters available for screening input and output.
These parameters were probably specified on your Linux
machine by ipchains (or ipfwadm for 2.0 kernels).
The machine that I use for IP masquerading has logging
turned off, so I don't know what sort of messages are
generated when it receives input/output that breaks the
"rules". But it wouldn't surprise me to find that it
generates messages similar to the ones you are getting.
Cheers,
Steven
