pptp-conntrack in kernel 2.4.29
Rodrigo Faria Tavares
rodrigofariatavares at bol.com.br
Sun Sep 18 12:55:24 UTC 2005
Testing... pptp-conntrack-nat.patch NOT APPLIED (8 missing files)
The ./extra/pptp-conntrack-nat patch:
Author: Harald Welte <laforge at netfilter.org>
Status: Beta
This adds CONFIG_IP_NF_PPTP:
Connection tracking and NAT support for PPTP. Using this, you can
track
PPTP/GRE connections and do SNAT/DNAT. You have to load the
following modules
for connection tracking:
ip_conntrack_proto_gre
ip_conntrack_pptp
for NAT:
ip_nat_proto_gre
ip_nat_pptp
The GRE connection is marked as RELATED to the TCP session on port
1723, so all
you need is something like
iptables -j ACCEPT -m state --state RELATED,ESTABLISHED
iptables -j ACCEPT -d my_pptp_server -p tcp --dport 1723 -m state --
state NEW
Note that this code currently has limitations
- can only NAT connections from PNS to PAC
- doesnt' support multiple calls within one session
- you have to recompile your iptables userspace program since some
structure sizes change
-----------------------------------------------------------------
Do you want to apply this patch [N/y/t/f/a/r/b/w/q/?] y
Testing patch ./extra/pptp-conntrack-nat.patch...
Placed new Config.in line
Placed new Configure.help entry
Placed new Makefile line
Placed new Makefile line
Placed new ip_conntrack.h line
Placed new ip_conntrack.h line
Placed new ip_conntrack.h line
Placed new ip_conntrack.h line
Placed new ip_conntrack.h line
Placed new ip_conntrack.h line
Placed new ip_conntrack.h line
Placed new ip_conntrack.h line
Failed to patch copy of /usr/src/linux-2.4.29
TEST FAILED: patch NOT applied.
How I can to resolve this error patch ?
Best regards,
Rodrigo Faria Tavares
e-mail : rodrigofariat at yahoo.com.br
Analista de Suporte Linux
_______________________________________________________
Novo Yahoo! Messenger com voz: ligações, Yahoo! Avatars, novos emoticons e muito mais. Instale agora!
www.yahoo.com.br/messenger/
More information about the Redhat-install-list
mailing list