From: Mick <michaelkintzios@gmail.com>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] loopback into gentoo iptables
Date: Sun, 14 Oct 2007 23:08:50 +0100 [thread overview]
Message-ID: <358eca8f0710141508ye4c0d7ey728a1e09c78444e6@mail.gmail.com> (raw)
In-Reply-To: <20071005180056.9d2f2cef.hilse@web.de>
On 05/10/2007, Hans-Werner Hilse <hilse@web.de> wrote:
> Hi,
>
> On Fri, 5 Oct 2007 10:42:42 -0500
> "Walter Willis" <walterwn@gmail.com> wrote:
>
> > I have modem asdl zyxel 660 and activate loopback with command: "ip nat
> > loopback on"
>
> Where do you enter that and why? What is the thing _you_ call a
> loopback? On what device or machine does it exist? You don't seem to be
> talking about the "ifup" tool (since you talk about "ip", which however
> does not know the "nat" mode?!?), and you don't seem to be talking
> about the lo device either.
>
> > the ask is:
> > it is into gentoo linux with iptables ?
>
> Errm, again: What? Setting up you loopback device on gentoo is done
> automatically by /etc/init.d/net.lo. Should be run on bootup by rc,
> check "rc-update show".
>
> Setting up NAT works using a sysctl (or the procfs). Restricting the
> NAT works using iptables.
>
> > the compiler module especial for function?
>
> Errrr.... Again, not sure what you are asking here... Yes, you need
> kernel modules for both NAT to work and as well netfilter modules for
> the chains and targets and matches you want to use with iptables. They
> don't really have to be modules, you can compile them statically into
> the kernel as well.
>
> If unsure, rephrase your question -- and be a bit more verbose on what
> you intend to do... A bit more information might as well cure lack of
> proper vocabulary... Give examples, try to describe the setting.
My telepathic abilities are getting rusty these days, but if guessing
is allowed I think that the OP wanted to set up gentoo so that he
could access the Zyxel router's firewall and modify its rules, from
the Gentoo desktop. Either that, or he's thinking of building an
embedded image for Zyxel?!
More info would no doubt help. If not anything else, tell us what
Zyxel can and cannot do - if it allows ssh access to its OS, then you
may be able to set up firewall builder on the Gentoo box and use that
to access/setup the Zyxel firewall. If you are running OpenWRT (not
sure if this would run on Zyxel, but just don't stop me guessing now)
you should be able to cook something so that firewall builder could
hook into it.
Best of luck,
--
Regards,
Mick
--
gentoo-user@gentoo.org mailing list
prev parent reply other threads:[~2007-10-14 22:25 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-10-05 15:42 [gentoo-user] loopback into gentoo iptables Walter Willis
2007-10-05 16:00 ` Hans-Werner Hilse
2007-10-05 22:23 ` Dan Farrell
2007-10-05 23:20 ` Hans-Werner Hilse
2007-10-14 22:08 ` Mick [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=358eca8f0710141508ye4c0d7ey728a1e09c78444e6@mail.gmail.com \
--to=michaelkintzios@gmail.com \
--cc=gentoo-user@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox