[EMAIL PROTECTED]
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5
?
the patch is in patch-o-matic, yes. It's now merged into the big
patch-o-matic/submitted/2.4.18.patch
Wiktor Wodecki [EMAIL PROTECTED]
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
I received this with my personal mail, but it certainly belongs here...
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E
is not that widely used (and debugged) yet.
I've committed your patch to iptables CVS, so the next release will have
the fix included.
Regards,
Andreas
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
, args...) do { if (net_ratelimit()) printk(format, ## args); }
while (0);
+#define PRINTR(format, args...) do { if (net_ratelimit()) printk(format, ## args); }
+while (0)
MODULE_AUTHOR(Harald Welte [EMAIL PROTECTED]);
MODULE_DESCRIPTION(IP tables userspace logging module);
--
Live long
On Mon, Feb 25, 2002 at 10:43:40AM +0100, Henrik Nordstrom wrote:
On Monday 25 February 2002 09:51, Harald Welte wrote:
Well, as you know, it is now resolved - the mangle5hooks patch has
made it into 2.4.18-preX and is definitely working since
2.4.18-rc1.
I am not referring to what
there now is a local-nat patch in patch-o-matic which fully supports DNAT in
OUTPUT. We will submit it for kernel inclusion soon.
mailto: (Karl M. Hegbloom) [EMAIL PROTECTED]
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
DaveM put mangle5hooks in 2.5.5?
it is in 2.5.5 and 2.4.18.
Brad Chapman
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L
and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h
);
EXPORT_SYMBOL(ip_nat_expect_register);
@@ -338,4 +340,5 @@
EXPORT_SYMBOL(ip_nat_mangle_tcp_packet);
EXPORT_SYMBOL(ip_nat_seq_adjust);
EXPORT_SYMBOL(ip_nat_delete_sack);
+EXPORT_SYMBOL(ip_nat_used_tuple);
MODULE_LICENSE(GPL);
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http
long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G
] // (http)stingr.net // (pgp)0xA4B4ECA4
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS
(ip_nat_out_ops);
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv
(ip_conntrack_unexpect_related);
EXPORT_SYMBOL(ip_conntrack_tuple_taken);
EXPORT_SYMBOL(ip_ct_gather_frags);
EXPORT_SYMBOL(ip_conntrack_htable_size);
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
patches
off to David Miller.
/Christopher Thorjussen
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O
to date with the official IANA list from
http://www.iana.org/assignments/dscp-registry
PS. This is my first netfilter hacking attempt so if i've made mistakes,
can you let me know.
Looks fine to me.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
by [EMAIL PROTECTED], but I don't know about it's current state.
Cheers,
Wei Koong CHAI
CCSR
University of Surrey
UK
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
: Remove the ECN bits from TCP SYN packets.
Taka
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V
the community be interested in seeing these
results?
Definitely.
Americo Melara
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L
/ new kernel versions apply.
Laurent
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE
be found at the netfilter/iptables project homepage,
available at:
http://www.netfilter.org/
http://www.iptables.org/
Happy firewalling,
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
.
best regards
Patrick
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP
,
you know ;)
Thanks in advance.
BTW: Gute Besserung.
later
Patrick
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E
but depends on how your ruleset looks
like.
Cheers,
James
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w
or overwriting the
expectation. It's not nice, but it works.
thanks for your help in advance!
Cc'ed to netfilter-devel, maybe somebody else has comments :)
-gregor-
GMX - Die Kommunikationsplattform im Internet.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http
is (will be) about TCP ECN
bits.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5
helpers to a new 'oldnat' repository in patch-o-matic.
As I will be porting all old helper one after the other to newnat, they
are going to appear in the 'extra' repository.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b
and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h--- r
Hi!
I've done a minimal port of the tftp helper to the newnat API.
It's now in patch-o-matic
Please review the code and test!
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h--- r++ y+(*)
against recent versions of the 'runme'
file.
Could you please send an updated version of your patch? Thanks.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s
.
Please also note that TCP is even used for queries (size 512 bytes), not only
for zone transfers.
Regards,
Wiktor Wodecki [EMAIL PROTECTED]
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
this in kernel ver 2.2, it's working..
Forget about linux 2.2. when you think use netfilter/iptables - it's
completely different - almost nothing is the same.
Hojae Lee
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
software are you using for IPv6 IPsec?
Regards,
kisza
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w
firewalling forward.
Patch applied.
Regards,
kisza
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K
,
Fabrice.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b
long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e
to be implemented)
-=Quequero=-
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE
something
or if they would like something like this in the kernel.
Bazsi
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W
is enough, no need
for python.
Suggestions ?
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h--- r++ y+(*)
]);
++ }
++endif
Those preprocessor macros do actually need '#' in front of them.
Already fixed in CVS.
Regards,
kisza
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
,
Martin
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t
chain of the nat table.
You just need to match the packets on -s my_local_ip_address.
I don't see a reason why this functionality should be replicated.
Regards
Henrik
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
for PRE_ROUTING, LOCAL_IN or
+ FORWARD\n);
return 0;
}
@@ -60,3 +62,5 @@
module_init(init);
module_exit(fini);
+MODULE_LICENSE(GPL);
+MODULE_DESCRIPTION(MAC address matching module for IPv6);
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED
if anyone noticed).
ftos has been removed from the 'base' repository, sincee it has been
replaced by DSCP
Pim.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d
Nordström
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R
/iptables.
Regards
Nigel
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t
a look at the code and then convert it to patch-o-matic.
Thank you..
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E
corruption.
I'm currently resolving all those issues and will include the corrected
code into netfilter patch-o-matic.
But I don't know how to distribute...
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G
this belongs here
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t
versioning to 2.5.x - but right now I have
different, more basic stuff on my 2.5.x todo list. Like abstracting
ip_tables into pkt_tables, creating new netlink-based userspace interface,
etc.
(°= Hervé Eychenne
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h--- r++ y+(*)
On Tue, Jan 01, 2002 at 01:03:13AM +0100, Andras Kis-Szabo wrote:
-Forwarded Message-
From: Peter Bieringer [EMAIL PROTECTED]
To: Harald Welte [EMAIL PROTECTED]
Cc: Andras Kis-Szabo [EMAIL PROTECTED]
Subject: Re: IPv6 MAC logging buggy bei Tunnel-Interfaces?
Date: 05 Apr 2002 21
AD1E CCF3 6F93 2823 44AD
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t
!);
+ parse_class(optarg, dinfo);
*flags = 1;
break;
Iain
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C
://support.microsoft.com/default.aspx?scid=kb;EN-US;q172227
http://support.microsoft.com/default.aspx?scid=kb;EN-US;Q263293
Janåke Rönnblom
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
If I'm not mistaken, in case of REJECT it should be possible to do without
a userspace patch - which is really starting to make things weird.
There is no real change in the structure layout, it's just one additional
value that is becoming valid...
Fabrice.
--
Live long and prosper
- Harald
On Sun, Apr 14, 2002 at 01:02:32AM -0400, Zygo Blaxell wrote:
In article [EMAIL PROTECTED],
Harald Welte [EMAIL PROTECTED] wrote:
On Wed, Apr 10, 2002 at 09:36:05PM -0400, Zygo Blaxell wrote:
I think that the user-space modules should provide much richer version
information than a simple
);
+ }
+
+ if (ub-skb) {
+ kfree_skb(ub-skb);
+ ub-skb = NULL;
+ }
+ }
+
}
module_init(init);
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
compiler on linux systems yet). The 'bug' has been fixed in CVS recently.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W
initially, as can be seen in the list archives.
So... one more question then, is there such a (ECN) match that I have missed
as well?
as stated above, give me a couple of more days
Have a nice day,
Oskar Andreasson
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED
On Tue, Apr 16, 2002 at 08:45:20AM -0700, Brad Chapman wrote:
Harald Welte wrote an ECN target a few weeks ago and then got rid of it
because of a b0rKed design. I think DSCP does everything your ECN
target/match can do, and I think it does more as well (not sure about this).
Perhaps
, ipc, rt, msg-msg_flags);
+ ufh, ulen, ipc, rt, msg-msg_flags, NULL);
out:
ip_rt_put(rt);
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
need
to make sure that the debug logging statements can be disabled at compile
time for efficiency.
So if they are unified, there still will be a config option explicitly
for the debugging stuff (debugging macros + DEBUG target).
Regards,
Jozsef
--
Live long and prosper
- Harald Welte / [EMAIL
On Wed, Apr 17, 2002 at 09:21:03PM +0200, Hervé Eychenne wrote:
On Wed, Apr 17, 2002 at 09:09:11PM +0200, Harald Welte wrote:
Well. As for the naming, I'd say:
- UNTRACKED for the state name (ESTABLISHED,RELATED,INVALID,UNTRACKED)
- notrack for the table name
- NOTRACK for the target
is about IP packets, not about ARP, IPX, IPv6, and some other weird
stuff going on on the network interface.
best regards
Patrick
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
On Fri, Apr 19, 2002 at 04:28:13AM +0200, Sneppe Filip wrote:
Hi Harald,
... a typo in the Makefile patch prevented the ip_conntrack_pptp
module from compiling, see Robert's mail to the Netfilter list.
thanks, patch applied
Regards,
Filip
--
Live long and prosper
- Harald Welte
On Fri, Apr 19, 2002 at 03:21:40PM +0200, Jozsef Kadlecsik wrote:
On Wed, 17 Apr 2002, Harald Welte wrote:
No, I'm fine with that. However, we might also think about adding
debug output to the NAT code, since paket manipulations are done without
any rule matching (after the first packet
and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h
On Mon, Apr 22, 2002 at 03:42:07AM +0200, Andras Kis-Szabo wrote:
Hi,
ChangeLog:
Thanks again, applied.
Regards,
kisza
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
-o-matic CVS
BTW: ip_masq_pptp was never included into the mainstream kernel source, IIRC.
Phil Roberts
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s
- but without any practical implications for security, there
is no other than academic interest in this.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL
On Fri, Apr 26, 2002 at 09:52:46AM -0700, Don Cohen wrote:
Harald Welte writes:
the counter argument is that the queue is part of the lower-layer drivers
and not part of the IPv4 stack. netfilter hooks are always restricted
to one protocol stack - there's separate hooks for ipv4
of hard-to-debug hidden stuff.
Brad
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE
) which solves the problem.
As far as I can see, removing the two lines shouldn't break anything else.
So if your problem is resolved after using this patch, I will commit it to
CVS.
Ted
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
function with the
conntrack destroy function, and then reading out the nat bindings out of
the ip_conntrack struct before destroying it.
Thanks Bye,
Patrick
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
rather check on '-' as first character and
disallow chain creation with such names.
Just a personal note: But it would have _never_ occurred to me that
somebody would want to start a chain name with a leading dash.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http
.
Maybe you can forward this to the patch author, asking him for some
explanation of this case.
- $(LD) -shared -o $@ $
+ $(CC) -shared -o $@ -nostdlib $ -lgcc
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED
CVS [or try to apply the patch
http://cvs.samba.org/cgi-bin/cvsweb/netfilter/userspace/iptables.c.diff?r1=1.45r2=1.46]
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS
it will be standard
starting with the 2.4.20 kernel] and issue four expectations for four
to-be-expected UDP streams.
Brennen Reynolds
[EMAIL PROTECTED]
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
see the various lengthy over-and-over-again discussed threads
about C++ programming within the linux kernel.
A short summary: The linux kernel will never support c++
Or are you talking about userspace?
TIA
Lior
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http
and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h--- r++ y+(*)
related at all,
http://www.wave-gothic-treffen.de/]
See [read/write] you,
Harald.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P
On Wed, May 22, 2002 at 02:56:28PM +0800, Fabrice MARIE wrote:
Hello,
Here's a patch from Guilaumme Morin that updates
thanks, patch applied.
Fabrice MARIE
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
.
Regards,
Rob
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X
there really is an out-of-state packet, the conntrack helper would
mark it INVALID - which might not be what you want in case of transparent
proxying, where such state violation should be detected by the proxy itself.
Bazsi
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http
the icmp nat fix?
Bazsi
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D
appeared in the ip6tables(8) manpage.
I have left it though.
well, I should find some time and finish the REJECTv6 and submit it.
(°= Hervé Eychenne
Thanks, patch applied.
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
iptables-related,
though.
Thanks.
Jean Bel
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V
between 0 and 3
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/
GCS/E/IT d- s-: a-- C+++ UL$ P+++ L$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R
changes with him before
submitting them to me. If he isn't working on the string match anymore,
we could also change ownership to you, but only in case this is fine with
Emmanuel.
// Gianni Tedesco [EMAIL PROTECTED]
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http
On Thu, May 30, 2002 at 01:02:04AM +0200, Henrik Nordstrom wrote:
Harald Welte wrote:
The ECN target supports the following operations:
-p tcp -j ECN --ecn-tcp-remove
As discussed before, I think there should be an --ecn-remove, which both
a) Clears all the ECN bits from the TCP
god. Please. I will review your patch ASAP, as will do every other
coreteam member.
It's just like not everybody has the time to immediately look into every
detail of something as complex as the ICMP reply translation.
SCNR.
Bazsi
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED
On Sun, Jun 02, 2002 at 04:01:04PM +0200, Marcus Sundberg wrote:
Hi,
some fixes to make current CVS compile properly.
thanks, applied.
//Marcus
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org
On Sun, Jun 02, 2002 at 10:38:07PM -0400, Dave Hawkes wrote:
I think there may be a typo in the ECN code recently commited to CVS
line 12 in ipt_ecn.h
yes, this has been fixed now.
Dave Hawkes
--
Live long and prosper
- Harald Welte / [EMAIL PROTECTED] http
1 - 100 of 149 matches
Mail list logo
