[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IP masquerading and ADSL



Howdy,

guy keren wrote:
> just a small suggestion (even it doesn't settle well with your description
> of packet sniffing): set the masquerading machine (the 'gateway') to
> always defrag IP packets (echo "1" > /proc/sys/net/ipv4/ip_always_defrag).
> i think i saw this as a required setting for masquerading linux gateways.

ip_always_defrag is gone in 2.4, and I've seen claims that what it used
to control is now handled automagically. Thanks none the less.


> note that masquerading normally works in a manner transparent to remote
> gateways (e.g. the ADSL modem and anything beyond it towards your
> provider) so a different between the behaviour of the masquerading gateway
> and the masqueraded client(s) is probably a misconfiguration on the local
> LAN.

Yup. But the problem occurs with 3 different clients and 2 different
choices of gateways, each with a different OS. Furthermore, the same
setup worked perfectly with ISDN instead of ADSL. That, added with the
nature of the problem, sounds rather fishy.

Perhaps there's some difference in the header of a masqueraded
fragmented packet vs. a normal fragmented packet, and the former is
mishandled by the ADSL modem or somewhere upstream?

** Did anyone manage to get masquearding working with ADSL? Using what
modem and what ISP? **

  Thanks,
    Eran

=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il