newnat patch+irc
Brad Chapman
kakadu_croc@yahoo.com
Tue, 9 Oct 2001 11:55:37 -0700 (PDT)
Mr. Aoclarit,
--- Aoclarit <aoclarit@kiwi.dhs.org> wrote:
> I believe you cannot use H323 and IRC helpers at the same time cause they break
> each other.
No. This is a long-standing issue with the p-o-m patches. The problem is
that the master header file for the connection tracking code, ip_conntrack.h
(found in /usr/src/linux/include/linux/netfilter_ipv4), is diff-patched, using
the standard diff tool for creating kernel patches. The problem is that ALL the
patches were built against a vanilla, unpatched file fetched fresh from source.
As a result, once any of the conntrack/NAT helpers are added to the kernel, every
other conntrack/NAT patch fails to apply, because of a context failure. Try it
yourself by doing this:
1. Run `make patch-o-matic' and add the IRC helper.
2. Copy the talk-conntrack-nat.patch file to /usr/src/linux.
3. Run `patch -p1' on the patch.
The patch should fail with rejects in ip_conntrack.h.
There have been proposals to fix it, but since Rusty has left, and Harald
has been busy doing other things, neither of the other two coreteam members have
done anything about it (AFAIK).
>
> ALEX
Brad
>
> "Tomer O." wrote:
>
> > Hey all
> >
> > Is there a way to use newnat patch with the irc module.
> > it seems like the irc_conntrack is still not compatible with the changes
> > newnat is making to the ip_conntrack.h and patching the kernel with the irc
> > module is imposible after newnat patch has been applied.
> > I'm applying newnat mainly because of the h323 helper.
> >
> > Thanks
> >
> > Tom.
=====
Brad Chapman
Permanent e-mail: kakadu_croc@yahoo.com
Current e-mail: kakadu@adelphia.net
Alternate e-mail: kakadu@netscape.net
__________________________________________________
Do You Yahoo!?
Make a great connection at Yahoo! Personals.
http://personals.yahoo.com