From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.54) id 1FCOik-0007UL-Fp for garchives@archives.gentoo.org; Thu, 23 Feb 2006 22:13:58 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.5/8.13.5) with SMTP id k1NMABI7000425; Thu, 23 Feb 2006 22:10:11 GMT Received: from smtp-vbr7.xs4all.nl (smtp-vbr7.xs4all.nl [194.109.24.27]) by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id k1NLjSL3002399 for ; Thu, 23 Feb 2006 21:45:28 GMT Received: from [10.0.0.1] (krikos.xs4all.nl [82.92.255.70]) (authenticated bits=0) by smtp-vbr7.xs4all.nl (8.13.3/8.13.3) with ESMTP id k1NLjQat031287 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Thu, 23 Feb 2006 22:45:26 +0100 (CET) (envelope-from Dave.Jones@xs4all.nl) Message-ID: <43FE2CF5.4050706@xs4all.nl> Date: Thu, 23 Feb 2006 22:45:25 +0100 From: Dave Jones Organization: Krikos User-Agent: Mozilla Thunderbird 1.0.7 (X11/20060123) X-Accept-Language: en-us, en Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] TARPIT iptables target References: <43FCF01D.4080200@xs4all.nl> <8146fc8a0602230623k22d1c17coc3c2d854b3fc30a@mail.gmail.com> In-Reply-To: <8146fc8a0602230623k22d1c17coc3c2d854b3fc30a@mail.gmail.com> X-Enigmail-Version: 0.93.0.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-Virus-Scanned: by XS4ALL Virus Scanner X-Archives-Salt: 66fded0e-9349-4b25-844a-918df878a475 X-Archives-Hash: 09cc51a837e40f4ef91fb4ffba48c320 Hi Andrew, Thank you for the tip about TARPIT, the problem is now solved. To complete the fix I downloaded patch-o-matic-ng and the iptables source from netfilter.org: cd /usr/src svn co https://svn.netfilter.org/netfilter/trunk/patch-o-matic-ng svn co https://svn.netfilter.org/netfilter/trunk/iptables The documentation on using cvs on netfilter.org is outdated, they've converted to subversion and cvs is no longer available there. cd /usr/src/patch-o-matic-ng ./runme extra Allowed me to select the new iptables targets I wanted. cd /usr/src/linux make menuconfig && make && make modules_install && make install I added the "extensions" USE flag to my /etc/make.conf, then reran the iptables emerge. It's all working fine now. Thanks to both you and Bryce for the help you gave! Cheers, Dave Andrew Frink wrote on 02/23/06 15:23: > Dave > to get tarpit support add the "extensions" USE flag when you emerge iptables > cynyr > I was reading about the TARPIT target in the man iptables documentation, > and thought I'd like to give it a try. Unfortunately though, it seems > not to be supported in the 2.6.15-1 Gentoo kernel. > Has anyone used the TARPIT target, or know of a way to get it into the > current kernel? Any experience with this target or 'gotchas' about it? -- gentoo-user@gentoo.org mailing list