/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
Hi again.
I have a tcpdump-file for u. Maybe it helps u to resolve the problem.
I have made a view comments. I think u mean the same, but your patch doesnt work.
Please help me I am no ip_masq expert.
Txs Bernd.
Here is the ...
//game creation by minoc.ain.at
00:32:23.774395 we-24-24-132-150.we.mediaone.net.6112 > bernd.ain.at.6112: udp 8
00:32:29.694638 europe.battle.net.6112 > minoc.ain.at.1027: P 17:25(8) ack 105 win
65410
00:32:29.704326 minoc.ain.at.1027 > europe.battle.net.6112: P 105:109(4) ack 25
win 8282 (DF)
00:32:29.704326 minoc.ain.at.1027 > europe.battle.net.6112: P 109:113(4) ack 25
win 8282 (DF)
00:32:29.793104 europe.battle.net.6112 > minoc.ain.at.1027: . 25:25(0) ack 113 win
65402
//bernd.ain.at want to join the game
00:32:22.264326 bernd.ain.at.3018 > 64.14.113.139.6112: P 601:605(4) ack 7363 win
17496 (DF)
00:32:22.634128 64.14.113.139.6112 > bernd.ain.at.3018: . 7363:7363(0) ack 605 win
65457
00:32:22.634326 bernd.ain.at.3018 > 64.14.113.139.6112: P 605:643(38) ack 7363 win
17496 (DF)
00:32:22.775140 64.14.113.139.6112 > bernd.ain.at.3018: P 7363:7375(12) ack 643
win 65419
00:32:22.774326 bernd.ain.at.3018 > 64.14.113.139.6112: P 643:647(4) ack 7375 win
17484 (DF)
00:32:23.071038 64.14.113.139.6112 > bernd.ain.at.3018: . 7375:7375(0) ack 647 win
65415
00:32:23.064326 bernd.ain.at.3018 > 64.14.113.139.6112: P 647:666(19) ack 7375 win
17484 (DF)
00:32:23.278662 64.14.113.139.6112 > bernd.ain.at.3018: . 7375:7911(536) ack 666
win 65396
00:32:23.351919 64.14.113.139.6112 > bernd.ain.at.3018: . 7911:8447(536) ack 666
win 65396
00:32:23.344326 bernd.ain.at.3018 > 64.14.113.139.6112: . 666:666(0) ack 8447 win
16412 (DF)
00:32:23.425046 64.14.113.139.6112 > bernd.ain.at.3018: . 8447:8983(536) ack 666
win 65396
00:32:23.497676 64.14.113.139.6112 > bernd.ain.at.3018: P 8983:9516(533) ack 666
win 65396
00:32:23.494326 bernd.ain.at.3018 > 64.14.113.139.6112: . 666:666(0) ack 9516 win
17520 (DF)
00:32:23.494326 bernd.ain.at.6112 > 210.91.236.79.6112: udp 8
//package udp loop and it dies
00:32:23.494326 bernd.ain.at.6112 > 211-232-137-100.panworldnet.com.6112: udp 8
00:32:23.494326 bernd.ain.at.6112 > 74-chatt.tn.dialup.nextlec.net.6112: udp 8
00:32:23.494326 bernd.ain.at.6112 >
adsl-141-158-5-35.phila.adsl.bellatlantic.net.6112: udp 8
00:32:23.494326 bernd.ain.at.6112 > we-24-24-132-150.we.mediaone.net.6112: udp 8
00:32:23.494326 bernd.ain.at.6112 > 1Cust196.tnt15.sdg1.da.uu.net.6112: udp 8
00:32:23.494326 bernd.ain.at.6112 > usr1-143.nm.kconline.com.6112: udp 8
00:32:23.494326 bernd.ain.at.6112 > 211.205.202.109.6112: udp 8
00:32:23.494326 bernd.ain.at.6112 > sdn-ar-013casfrMP192.dialsprint.net.6112: udp
8
00:32:23.494326 bernd.ain.at.6112 >
modemcable044.173-200-24.mtl.mc.videotron.ca.6112: udp 8
00:32:23.494326 bernd.ain.at.6112 > modem.milwpc.com.6112: udp 8
00:32:23.494326 bernd.ain.at.6112 > 211.63.232.213.6112: udp 8
00:32:23.494326 bernd.ain.at.6112 > dialup1-022.csus.edu.6112: udp 8
Have a lot of fun.
Michael Best schrieb:
> You can download it from http://www.com.org/~michael/masq-demasq.zip
>
> Unzip the file in /usr/src as masq-demasq.patch and run "patch -l -p0
> <masq-demasq.patch" from there. You will then have to rebuild your kernel. Go
> to /usr/src/linux and run "make bzlilo".
>
> This patch basically allows "de-masqed" packets to be "masq-ed" again. Thus it
> checks the forward chain even when packets have been de-masqed. However, it
> ignores "DENY" or "REJECT" targets. Thus your MASQ rule should be based only
> on the source address and not on the destination interface or address!
>
> -- Michael Best
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
