(Jul 19 2005 22:05) Jannic S. Jensen wrote: > I had communicating these last days with the Shorewall mailinglist. > They are sure it's iptables related and not the Shorewall scripts. > They had this one example > > --- > ursa:/var/log/YaST2 # iptables -N AllowICMPs > ursa:/var/log/YaST2 # iptables -A AllowICMPs -p icmp --icmp-type > fragmentation-needed -j ACCEPT > ---
Yes, this is what I tested as well, but I only did the test on a 2.2 system and found it to work nicely. I forgot you had this problem on 3.0... :| Anyway, it seems to be a bug in the iptables package (or the kernel iptables options) that triggers this. > Is ICMP disabled on Trustix 3.0? Just asking - don't know if it is > possible. When you do and iptables -p icmp --help no icmp support is > found. I've tried compiling iptables 1.3.2 self but the succes. Still > same errors from iptables. My guess would be that the iptables part of the kernel lacks this functionality, and that iptables only can use what the kernel supports. > > Should I make and bug report? Yes please. kind regards c -- Christian H. Toldnes Trustix Developer _______________________________________________ tsl-discuss mailing list [email protected] http://lists.trustix.org/mailman/listinfo/tsl-discuss
