|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] IP Masquerade on kernel 2.4: "netstat -M" fails
|
On Sunday July 08, 2001 3:12 pm, you wrote:
> Quick question:
>
> I took a RH 6.2 box, compiled kernel 2.4.3, and set up IP MASQ through
> iptables. The masquerading works great. Back on the 2.2 series and
> ipchains, I could type "netstat -M" to see masq'ed connections. Now, if I
> do that I get:
>
> $ netstat -M
> netstat: no support for `ip_masquerade' on this system.
>
> Same when trying it as root, too. Netstat works fine for showing
> connections directly to/from the box... So is there a different command to
> use for the 2.4 series?
>
I think you need an updated netstat that has support for the 2.4.x kernel. I
use BSD for my firewall so I am not sure about the gorry details beyond that.
2.4.x i suppose to have a whole new set of utils to make firewall management
a breeze, but the lack of consistant docs made me stick with BSD. I figure
by the time 2.4.18 is out the docs will be there and all of the race
condidtions will be fixed in the firewall code....
-ian reinhart geiser
p.s. as a side note, I know quite a few people who are just sticking with
2.2.15 and IP Chains... They have been up for over a year and never reboot
and never have been broken into... The best way to keep a UNIX box up and
running is once you get it tweaked DONT mess with it :)
--
Fortune for the day:
---------------------------------------------------------------------
Computers can figure out all kinds of problems, except the things in
the world that just don't add up.
---------------------------------------------------------------------
Ian Reinhart Geiser -=<*>=- Linux & KDE Developer
______________________________________________________________________
Philadelphia Linux Users Group - http://www.phillylinux.org
Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
|
|