netfilter Digest, Vol 14, Issue 52
Justinas Bedžinskas
justasb at patikimi.lt
Fri Sep 30 14:24:13 CEST 2005
> Message: 3
> Date: Wed, 28 Sep 2005 12:48:01 +0300
> From: Justinas Bed?inskas <justasb at patikimi.lt>
> Subject: problem with expire patch
> To: netfilter at lists.netfilter.org
> Message-ID: <1127900881.15747.4.camel at biesas>
> Content-Type: text/plain
>
> I have compiled 2.6.12 kernel with iptables expire support, I also have
> recompiled iptables with expire support.
> And I encounter a strange problem with time
>
> xxx:/home/digis#modprobe ipt_expire
> xxx:/home/digis#/usr/local/sbin/iptables -t nat -A POSTROUTING -m expire
> --expiration +30 -o eth1 -j MASQUERADE
>
> Then I wait more than 30 seconds....
>
> xxx:/home/digis#/usr/local/sbin/iptables -t nat -L
> Chain PREROUTING (policy ACCEPT)
>
>
> Chain POSTROUTING (policy ACCEPT)
> target prot opt source destination
> MASQUERADE all -- anywhere anywhere expires in
> -2s
>
>
> and it keeps counting...
> What I am doing wrong?
>
http://patchwork.netfilter.org/netfilter-devel/patch.pl?id=2761
these patches fixed my problem (thanks to Bryan Cardillo), and they are
2 months old. Why aren't they included in patch-o-matic patchset?
--
Justinas Bedžinskas <justasb at patikimi.lt>
"Patikimi Sprendimai"
More information about the netfilter
mailing list