From: "Walter Dnes" <waltdnes@waltdnes.org>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] Latest update; problems with ppp and iptables
Date: Fri, 8 Sep 2006 00:00:43 -0400 [thread overview]
Message-ID: <20060908040043.GA6088@waltdnes.org> (raw)
In-Reply-To: <200609072312.20921.michaelkintzios@gmail.com>
On Thu, Sep 07, 2006 at 11:12:09PM +0100, Mick wrote
> On Thursday 07 September 2006 22:26, Walter Dnes wrote:
> > I'm on baselayout-1.12.4-r7, and I invoke ppp for dialup with
> > pon/poff. I use pppconfig for setup. Is it safe for me to delete
> > the files?
>
> It is safer to mv them to a different name/place. Mine worked fine
> after I renamed them and completed the emerge.
Dohhhh. I feel stupid for missing the obvious solution. Dialup works
OK without those files. I checked. At least I managed to figure out
the iptables problem. A year ago, I included just about everything in
iptables via "make menuconfig". This has been inherited by subsequent
kernels via "make oldconfig". When that blew up on me Wednesday, I had
to *MANUALLY* re-enter everything into "make menuconfig". There was a
bunch of new stuff, so I read the "Help" for items I wasn't sure about.
In that process, I decided I don't need raw or mangle support. I'm
not doing any NAT stuff; my Netgear router/modem handles that. So this
time around, I did not include raw or mangle. However, I left in the
references in /var/lib/iptables/rules-save, which started like so...
# Generated by iptables-save v1.3.5 on Wed Sep 6 18:41:29 2006
*raw
:PREROUTING ACCEPT [8675812:8112852860]
:OUTPUT ACCEPT [7421674:1137157572]
COMMIT
# Completed on Wed Sep 6 18:41:29 2006
# Generated by iptables-save v1.3.5 on Wed Sep 6 18:41:29 2006
*mangle
:PREROUTING ACCEPT [75679798:80347321466]
:INPUT ACCEPT [75679763:80347310753]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [60668907:37528863764]
:POSTROUTING ACCEPT [60668897:37528208414]
COMMIT
# Completed on Wed Sep 6 18:41:29 2006
# Generated by iptables-save v1.3.5 on Wed Sep 6 18:41:29 2006
*filter
...
I simply deleted every line before "*filter" and iptables now works
OK. It doesn't attempt to use raw or mangle, which I haven't built.
--
Walter Dnes <waltdnes@waltdnes.org> In linux /sbin/init is Job #1
My musings on technology and security at http://tech_sec.blog.ca
--
gentoo-user@gentoo.org mailing list
prev parent reply other threads:[~2006-09-08 4:07 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-09-07 21:26 [gentoo-user] Latest update; problems with ppp and iptables Walter Dnes
2006-09-07 22:12 ` Mick
2006-09-08 4:00 ` Walter Dnes [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20060908040043.GA6088@waltdnes.org \
--to=waltdnes@waltdnes.org \
--cc=gentoo-user@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox