According to Cedric Pradalier, on Fri, 22 Apr 2005 08:33:47 +1000, >Hi all, > >is there anybody out there using a kernel >= 2.6.10, with a >pppoe connection to internet and a firewall with iptables, >defined by hand or with firestarter ? (my machine is an >ibook2.2, but I don't think this is relevant here). > >I'd really like to know if I'm the only one having problem >with this configuration. If this is a kernel bug, or my >configuration's bug? Especially, if someone has this kind >of setup working, I'd like to compare our configs. > >On my machine, I'm stuck with 2.6.8 since any newer kernel >(custom build or debian), with the firewall on, will fail >to let TCP packet enter my machine. >
Some more infos on this problem, I've now tracked down the problem and I found out the rule that make my firewall useless: with 2.6.11.6-powerpc, any packet matches a rule with "-m state --state INVALID" flags which apparently is setup by ip_conntrack. And I've checked with 2.6.8, this has definitely been introduced afterward. It is independent of iptables 1.2 or 1.3.1 I'm wondering what is so special in my configuration that I'm the only one to experience that. If you think this question is not relevant to debian-ppc, can someone please advise another list to try, or which package to bugreport to. Thanks again. Cedric -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
