Re: debian woody iptables/ipmasq compatible?

To: debian-firewall@lists.debian.org
Subject: Re: debian woody iptables/ipmasq compatible?
From: hobbes@easynet.be (Rémi Letot)
Date: Tue, 10 Sep 2002 11:35:22 +0200
Message-id: <[🔎] 871y82qjad.fsf@easynet.be>
References: <[🔎] 1031632281.1777.7.camel@toolbench>

John Griessen <john_g@cibolo.com> writes:

> Hi,
>
> Places in the debian documentation recommend  
>  running /sbin/ipmasq when starting and stopping your ppp connection.
>
> If I have a 2.4 kernel iptables firewall that does masquerading, do I
> need to still use /sbin/ipmasq?  I am thinking that the iptables way
> does not need any setup change when the ppp0 connection changes --
> anyone know more specifics?

I think the ipmasq package filters by ip addresses. Then it needs to
recompute the rules if your ip changes. 

I also read in the shorewall doc that using the ip might be slightly
faster than using the interface name. But I don't know the netfilter
internals, so don't take my word as granted.

-- 
Rémi

Reply to:

References:
- debian woody iptables/ipmasq compatible?
  - From: John Griessen <john_g@cibolo.com>

Prev by Date: Re: traffic reporter
Next by Date: 1 External IP + Router 3com 812 + Debian with 2 internal IPs (port 80)
Previous by thread: debian woody iptables/ipmasq compatible?
Next by thread: 1 External IP + Router 3com 812 + Debian with 2 internal IPs (port 80)
Index(es):
- Date
- Thread