Hi,
two days ago I sent a message to this list, describing a strange problem
with my bridging firewall. ("bridge is loosing DNS requests, please help")
I kept trying and testing and now have a clearer idea of what's going
wrong. To make it short:
After a fresh reboot the bridge works just great.
But after the firewall script is loading the module "ip_conntrack" the
bridge always answers with an ICMP packet "destination unreachable".
This results e.g. in DNS queries not getting through to the root servers.
Strangely enough DNS queries _do_ get through to other DNS servers?
Maybe this bug has to do with the fragmenting problem which has been
discussed various times on this list? But it's not only breaking DNS but
also HTTP, MySQL etc. Basically the bridge is not usable as a firewall. :-(
Any help is very much appreciated!
Andy.
PS: Debian-kernel 2.4.22-3 with ebtables-brnf-2_vs_2.4.22.diff.gz
--
http://peru.spiegl.de Our project
http://radiomaranon.org.pe Radio Mara��n, Ja�n, Per�
o _ _ _
------- __o __o /\_ _ \\o (_)\__/o (_) -o)
----- _`\<,_ _`\<,_ _>(_) (_)/<_ \_| \ _|/' \/ /\\
---- (_)/ (_) (_)/ (_) (_) (_) (_) (_)' _\o_ _\_v
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
A small clue and no budget will get you a lot farther
than no clue and a big budget.
_______________________________________________
Bridge mailing list
[EMAIL PROTECTED]
http://www.math.leidenuniv.nl/mailman/listinfo/bridge
