From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1GLXeh-0002N6-NV for garchives@archives.gentoo.org; Fri, 08 Sep 2006 04:07:52 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.8/8.13.6) with SMTP id k8846OKZ013629; Fri, 8 Sep 2006 04:06:24 GMT Received: from mailout2.igs.net (mailout2.igs.net [216.58.97.88]) by robin.gentoo.org (8.13.8/8.13.6) with ESMTP id k88414Lt003349 for ; Fri, 8 Sep 2006 04:01:04 GMT Received: from waltdnes.org (i216-58-59-102.cybersurf.com [216.58.59.102]) by mailout2.igs.net (Postfix) with SMTP id 188DB47EA2D for ; Fri, 8 Sep 2006 00:01:04 -0400 (EDT) Received: by waltdnes.org (sSMTP sendmail emulation); Fri, 8 Sep 2006 00:00:43 -0400 From: "Walter Dnes" Date: Fri, 8 Sep 2006 00:00:43 -0400 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Latest update; problems with ppp and iptables Message-ID: <20060908040043.GA6088@waltdnes.org> References: <20060907212602.GA6743@waltdnes.org> <200609072312.20921.michaelkintzios@gmail.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200609072312.20921.michaelkintzios@gmail.com> User-Agent: Mutt/1.5.11 X-Archives-Salt: 62635752-7a95-4687-b0d9-4be129d591dd X-Archives-Hash: 1e429aedabbb5d9a10b2b64b7d65c2b3 On Thu, Sep 07, 2006 at 11:12:09PM +0100, Mick wrote > On Thursday 07 September 2006 22:26, Walter Dnes wrote: > > I'm on baselayout-1.12.4-r7, and I invoke ppp for dialup with > > pon/poff. I use pppconfig for setup. Is it safe for me to delete > > the files? > > It is safer to mv them to a different name/place. Mine worked fine > after I renamed them and completed the emerge. Dohhhh. I feel stupid for missing the obvious solution. Dialup works OK without those files. I checked. At least I managed to figure out the iptables problem. A year ago, I included just about everything in iptables via "make menuconfig". This has been inherited by subsequent kernels via "make oldconfig". When that blew up on me Wednesday, I had to *MANUALLY* re-enter everything into "make menuconfig". There was a bunch of new stuff, so I read the "Help" for items I wasn't sure about. In that process, I decided I don't need raw or mangle support. I'm not doing any NAT stuff; my Netgear router/modem handles that. So this time around, I did not include raw or mangle. However, I left in the references in /var/lib/iptables/rules-save, which started like so... # Generated by iptables-save v1.3.5 on Wed Sep 6 18:41:29 2006 *raw :PREROUTING ACCEPT [8675812:8112852860] :OUTPUT ACCEPT [7421674:1137157572] COMMIT # Completed on Wed Sep 6 18:41:29 2006 # Generated by iptables-save v1.3.5 on Wed Sep 6 18:41:29 2006 *mangle :PREROUTING ACCEPT [75679798:80347321466] :INPUT ACCEPT [75679763:80347310753] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [60668907:37528863764] :POSTROUTING ACCEPT [60668897:37528208414] COMMIT # Completed on Wed Sep 6 18:41:29 2006 # Generated by iptables-save v1.3.5 on Wed Sep 6 18:41:29 2006 *filter ... I simply deleted every line before "*filter" and iptables now works OK. It doesn't attempt to use raw or mangle, which I haven't built. -- Walter Dnes In linux /sbin/init is Job #1 My musings on technology and security at http://tech_sec.blog.ca -- gentoo-user@gentoo.org mailing list