From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1JBtp8-0006yE-7K for garchives@archives.gentoo.org; Mon, 07 Jan 2008 15:23:34 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id EE9E2E0514; Mon, 7 Jan 2008 15:22:59 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id 650C2E03DA for ; Mon, 7 Jan 2008 15:22:59 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by smtp.gentoo.org (Postfix) with ESMTP id 01A6F64260 for ; Mon, 7 Jan 2008 15:22:59 +0000 (UTC) X-Virus-Scanned: amavisd-new at gentoo.org X-Spam-Score: -2.69 X-Spam-Level: X-Spam-Status: No, score=-2.69 required=5.5 tests=[AWL=-0.091, BAYES_00=-2.599] Received: from smtp.gentoo.org ([127.0.0.1]) by localhost (smtp.gentoo.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GAfgckO-Nn9g for ; Mon, 7 Jan 2008 15:22:50 +0000 (UTC) Received: from ciao.gmane.org (main.gmane.org [80.91.229.2]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTP id 0A16164295 for ; Mon, 7 Jan 2008 15:22:49 +0000 (UTC) Received: from list by ciao.gmane.org with local (Exim 4.43) id 1JBtoE-00060C-B8 for gentoo-user@gentoo.org; Mon, 07 Jan 2008 15:22:38 +0000 Received: from adsl-75-3-178-22.dsl.chcgil.sbcglobal.net ([75.3.178.22]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Mon, 07 Jan 2008 15:22:38 +0000 Received: from reader by adsl-75-3-178-22.dsl.chcgil.sbcglobal.net with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Mon, 07 Jan 2008 15:22:38 +0000 X-Injected-Via-Gmane: http://gmane.org/ To: gentoo-user@lists.gentoo.org From: reader@newsguy.com Subject: [gentoo-user] Re: ip_conntrack - is it missing Date: Mon, 07 Jan 2008 09:22:31 -0600 Organization: Still searching... Message-ID: <87ejctoe2w.fsf@newsguy.com> References: <87sl1aiex0.fsf@newsguy.com> <4781B737.5030003@j-schmitz.net> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: adsl-75-3-178-22.dsl.chcgil.sbcglobal.net User-Agent: Gnus/5.110007 (No Gnus v0.7) Emacs/22.1 (gnu/linux) Cancel-Lock: sha1:C1/6Bxdr8ntl1sqO3dSCIed9D7s= Sender: news X-Archives-Salt: 82c1b3c5-dfa2-4812-942b-8d12e37f4ca6 X-Archives-Hash: 9f6d26afa9ead75677569e4ffb12afce Johann Schmitz writes: > reader@newsguy.com schrieb: >> Turns up nothing even close. Does it mean I'm still missing something >> in the kernel build? or is it just baloney or out of date? > > Hi, > you can simply check our kernel config by typing: > > cat /usr/src/linux/.config | grep -i conntrack > > IIRC, there should be the lines Yes but what about the comment in the HOWTO: "cat/proc/net/ip_conntrack". Even with no firewall configured, Linux's conntrack functionality is working behind the scenes, keeping track of the connections that your machine is participating in. I see: grep -i ^[^#].*conntrack /usr/src/linux/.config CONFIG_NF_CONNTRACK_ENABLED=m CONFIG_NF_CONNTRACK=m CONFIG_NF_CONNTRACK_MARK=y CONFIG_NF_CONNTRACK_SECMARK=y CONFIG_NF_CONNTRACK_EVENTS=y CONFIG_NETFILTER_XT_MATCH_CONNTRACK=m CONFIG_NF_CONNTRACK_IPV4=m CONFIG_NF_CONNTRACK_PROC_COMPAT=y But do NOT see what that HOWTO refers to (/proc/net/ip_conntrack) [...] > Hope you can guess what it want to say - english isn't my native > lang, and it is early in the morning ;) English is my native language and you are considerably better at it than I am. That may not be much of a compliment though because I'm an illiterate hill-billy. -- gentoo-user@lists.gentoo.org mailing list