[Firehol-support] Re: Integrating ipt_recent with FireHOL
Redeeman
redeeman at metanurb.dk
Sat Nov 12 17:10:37 GMT 2005
i sat it up this morning (10 hours ago) and tested it (2.6.14)
and it appears to be working, i just tested just now.
On Sat, 2005-11-12 at 14:23 +0000, Carlos Rodrigues wrote:
> On 11/12/05, Costa Tsaousis <costa at tsaousis.gr> wrote:
> > Now, about the recent match, you should know that:
> >
> > 1. kernel versions prior to 2.6.13 may have issues. Check these:
> > http://patchwork.netfilter.org/netfilter-devel/patch.pl?id=2587
> > http://blog.blackdown.de/2005/05/09/fixing-the-ipt_recent-netfilter-module/
>
> I just tried rebooting one of my firewalls and indeed it refuses SSH
> connections during the first few minutes after boot (and so, probably
> after 25 days too, like mentioned in those references). Damn, it was
> working apparently so well... now I have to scrap it.
>
> It seems that the kernel devs don't want to apply the existing patch,
> and it doesn't look like there is a way to patch this correctly short
> of rewriting the whole "ipt_recent" module...
>
> Debian has a bug report about this:
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=332231
>
> --
> Carlos Rodrigues
>
>
> -------------------------------------------------------
> SF.Net email is sponsored by:
> Tame your development challenges with Apache's Geronimo App Server. Download
> it for free - -and be entered to win a 42" plasma tv or your very own
> Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php
> _______________________________________________
> Firehol-support mailing list
> Firehol-support at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/firehol-support
>
More information about the Firehol-support
mailing list