On 9/21/12 6:13 PM, "Tarqi Kazan" <[email protected]> wrote:
>So, >after a lot of reboots some information: > >nf_nat_pptp has been loaded by an forgotten script on reboot - shame on me >THIS module pulls in nf_nat_proto_gre and (both of them?) caused the >initial >problem. > >nf_conntrack_pptp pulls nf_conntrack_proto_gre and seems to be loaded >automatically when needed. They are needed and make no problems (as far I >can see). > >However, a lot of modules are loaded by shorewall, even if not active. The *only* modules which Shorewall loads explicitly are those loaded by the 'load module' function. > >I removed everything network-related stuff (including shorewall) and >rebooted -> no relevant modules loaded, no iptables, nothing. So far so >good. > >The I started shorewall. It loads everything(?), regardless what's defined >in /etc/shorewall/helpers. There was no network activity, which could have >been load them automatically. What is being loaded is *autoloaded* as a result of your Shorewall configuration. If you don't like what gets loaded, then don't use a statefull firewall on Linux. -Tom You do not need a parachute to skydive. You only need a parachute to skydive twice. ------------------------------------------------------------------------------ How fast is your code? 3 out of 4 devs don\\\'t know how their code performs in production. Find out how slow your code is with AppDynamics Lite. http://ad.doubleclick.net/clk;262219672;13503038;z? http://info.appdynamics.com/FreeJavaPerformanceDownload.html _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
