Re: Some questions about IP Masquerading

To: Debian Userslist <debian-user@lists.debian.org>
Subject: Re: Some questions about IP Masquerading
From: martin@internet-treff.uni-koeln.de (Martin Bialasinski)
Date: 27 Mar 1999 14:32:23 +0200
Message-id: <[🔎] m10QsGF-0003iXC@haitech.martin.home>
In-reply-to: Mark Phillips's message of "Thu, 25 Mar 1999 18:14:41 +1030"
References: <[🔎] E10Q4oj-0000k8-00@localhost>

>> "MP" == Mark Phillips <mark@ist.flinders.edu.au> writes:

MP> /sbin/depmod -a
MP> /sbin/modprobe ip_masq_ftp
MP> /sbin/modprobe ip_masq_raudio
MP> ...etc

MP> I presume that under debian I actually just add these modules to
MP> /etc/modules??

Yes.

MP> is short for "video live"??  And I have no idea about "cuseeme"??

Some video conferencing application (for Windows).

MP> Why isn't "http" here --- doesn't it need a module?  What about
MP> "rlogin", "telnet", "ping" and "pop3" (email)??

These don't require special modules (for ping, you have to enable ICMP 
masquerading during kernel config).

MP> 3.  What does "ipv4" stand for?  Is it specifically masquerading stuff?

No, IPv4 is the usual IP protocol you use.
 
MP> 4.  The HOWTO says:

MP> IMPORTANT: IP forwarding is disabled by default since 2.0.34
MP> kernels, please make sure you enable it by running
MP> echo "1" > /proc/sys/net/ipv4/ip_forward 

MP> This seems a very strange way to enable something.  Does it need to be
MP> done at boot time, or when?  Why is it done like this?

Seems like a little thing to enhance security. You setup the thing
(load the modules, setup the firewall), then, when the network is
secure, you actually enable it.

Ciao,
	Martin

Reply to:

References:
- Some questions about IP Masquerading
  - From: Mark Phillips <mark@ist.flinders.edu.au>

Prev by Date: Re: MTA and SMTP ident
Next by Date: Re: Coupla quick questions...
Previous by thread: Re: Some questions about IP Masquerading
Next by thread: Re: Some questions about IP Masquerading
Index(es):
- Date
- Thread