weird tcp syn problem
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Just recently, I rebooted a machine and iptables hasn't worked since. I
hadn't upgraded the kernel, or touched anything else (that I can remember).
The particular error is this:
/etc/iptables.cfg: /proc/sys/net/ipv4/tcp_syncookies: No such file or
directory
and when I looked at iptables.cfg, the relevant line looked like this:
echo > /proc/sys/net/ipv4/tcp_syncookies
Now, first thing I noticed is that it wasn't echoing anything at all. Every
other line in that file echoes either 0 or 1. However, after fruitlessly
trying to echo /anything/ into that file, a google search turned up something
I already knew: /proc is special and you can't just create files in there
with impunity. So, I started looking at what modules I was loading. lsmod
showed me iptable_mangle and iptable_filter were both loaded. Afaict, that
should be all I need to get masq working, supported by the fact that it has
been working for months with the same configuration. Well, maybe something
got corrupt. So, I recompiled the kernel, installed, rebooted, exact same
problem. Hrumph. Okay, upgrade from 2.4.4 to 2.4.7. Go over the kernel
config options with a fine-tooth comb, recompile, reboot. Exact same
problem. Now I'm lost, confused, and people are starting to get pissed off.
If anyone has *any* idea, at all, please oh please send a hint or cluebat my
way. I'm all out of ideas......
- --
"To me vi is Zen. To use vi is to practice zen. Every command is
a koan. Profound to the user, unintelligible to the uninitiated.
You discover truth everytime you use it." reddy@lion.austin.ibm.com
dbishop@micron.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE7crOP14eKrYdPXKkRAhUGAKCKHQkt0lYsAotCBvPaywdiGD2ntwCgrSZ6
pRMCeDViNLsnNKRzvo1H97w=
=aQwX
-----END PGP SIGNATURE-----
Reply to: