Trouble finishing IPTable install (was:Trouble installing IPTables (long))

[Harald Welte]

On Thu, Jul 12, 2001 at 01:53:28PM -0400, Brad Chapman wrote:

>    All three of these patches have also failed on my system, for reasons
> unkknown. The "brokeness" of patch-o-matic is another ongoing discussion
> among the core team members. For now, though, if you don't need it, don't
> add it. The masq-dynaddr patch is only good for dial-up users who use 
> MASQUERADE, the talk-conntrack+nat patch is for people who want to use the
> old UNIX talk/ntalk

well, I would say the bare existance of patch-o-matic is an _extremely_ 
nice thing.. Without it, all patches would clash, and it would always be
up to the user to merge them.  Now that we have patch-o-matic, the number
of cases where this is needed was reduced dramatically.

> programs, and the tcp-window-tracking.patch is also broken in some way, 
> since

please keep your voice down when talking about things where you are not
sure about what you say.

You are insulting the author of this perfectly stable working piece of code.

Almost all installations of iptables-based firewalls I did are running
the tcp-window-tracking patch.

Yes, there is some peripheral problems which cause some log messages,
but it does definitely not interrupt or disturb your traffic in any
way.

Thanks for your understanding
> Brad

-- 
Live long and prosper
- Harald Welte / laforge@gnumonks.org               http://www.gnumonks.org/
============================================================================
GCS/E/IT d- s-: a-- C+++ UL++++$ P+++ L++++$ E--- W- N++ o? K- w--- O- M- 
V-- PS+ PE-- Y+ PGP++ t++ 5-- !X !R tv-- b+++ DI? !D G+ e* h+ r% y+(*)