Re: IP masq

[brian moore <bem@cmc.net>]

On Mon, Jan 29, 2001 at 06:45:12PM +0100, A+B Frank wrote:
> Gabor Gludovatz wrote:
> > 
> > Hi,
> > 
> > I connect to the Internet from a masqueraded LAN through a masquerading
> > gateway/proxy server. My problem is that, if I am logged in to somewhere
> > outside our network with ssh or telnet, after a little while of inactivity
> > the gateway resets the connection and I have to reconnect.
> > 
> > The proxy server is a Deb 2.1 with kernel 2.0.38. What should I set in its
> > kernel if I want to keep the connection even if it's idle?
> > 
> > (it's all the same, wherever I connect to, I get disconnected, so it's
> > not a logoutd thing.)
> 
> Hi,
> it seems to me like a time out for idle lines. Search in th
> configuration 
> files of ppp/ippp for a parameter "huptimeout" or so.

Close, but the key isn't pppd, but ipmasq.

See the '-s' option to ipfwadm (or -S for ipchains).  From the Debian
'ipmasq' package:

[durin:/etc/ipmasq/rules] 133 % cat Z92timeouts.def 
# You should not edit this file.  Instead, create a file with the same
# name as this one, but with a .rul extension instead of .def.  The
# .rul file will override this one.
#
# However, any changes you make to this file will be preserved.

# Set masqerading timeouts:
#   2 hrs for TCP
#   10 sec for TCP after FIN has been sent
#   160 sec for UDP (important for ICQ users)
case $MASQMETHOD in
ipfwadm)
    $IPFWADM -M -s 7200 10 160
    ;;
ipchains)
    $IPCHAINS -M -S 7200 10 160
    ;;
esac


-- 
CueCat decoder .signature by Larry Wall:
#!/usr/bin/perl -n
printf "Serial: %s Type: %s Code: %s\n", map { tr/a-zA-Z0-9+-/ -_/; $_ = unpack
'u', chr(32 + length()*3/4) . $_; s/\0+$//; $_ ^= "C" x length; } /\.([^.]+)/g;