RE: ipfwadm in kernel 2.2.1

Fred Reimer (Fred.Reimer@eclipsys.com)
Fri, 5 Feb 1999 14:35:53 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: jens@pinguin.conetix.de: "Re: fsync on large files"
Previous message: Linus Torvalds: "Re: Linux-2.2.2-pre2.."

I believe that you can't use ipfwadm in 2.2 any more. 2.2 has a new method
for firewall rules, etc. You have to use ipchains instead. ipchains is
supposed to have an (almost) one for one replacement for ipfwadm. I think
there is another program that provides more functionality (port redirection
or something?) but ipchains does all I need so have not looked into it.
There should be documentation under Documentation.

Instead of ipfwadm -I -l try:
ipchains -L

Instead of ipfwadm -F -a accept ... try:
ipchains -A forward -j ACCEPT ...

(I think that's right, check the man page -- hey, did you upgrade all the
packages that need to be upgraded in order to move from 2.0.x to 2.2.x?
There are quite a few, and I think ipchains might be in one of them).

HTH,

Fred

> -----Original Message-----
> From: owner-linux-kernel@vger.rutgers.edu
> [mailto:owner-linux-kernel@vger.rutgers.edu]On Behalf Of Martin Och
> Sent: Friday, February 05, 1999 2:07 PM
> To: 'linux-kernel@vger.rutgers.edu'
> Subject: ipfwadm in kernel 2.2.1
>
>
> Hi all,
>
> I have several problems, can somebody help me, please.
>
> I have problem with ipfwadm from red hat 5.2 distribution in
> kernel 2.2.1
> ipfwadm is not supported in kernel 2.2.1?
> If i try ipfwadm -I -l, the reply is cannot open /proc/net/ip_input
> If i try ipfwadm -F -a accept the reply is
> ipfwadm:setsockopt failed: No such file or directory
> When making menuconfig, all firewall options (incl.
> experimental) are Yes, but probably something missing.
> Somebody help me, please.
>
> When I run ipfwadm in kernel from distribution, everything is OK.
>
> My second problem is in Traffic Shaper.
> Thanks all for previous replies to my question.
>
> Yes, it must be a module, can't be on eth0 (master IF), and
> must be attached to device with real IP.
> If i make a 2.2.1 kernel with Traffic Shaper option set to M,
> Traffic shaper running good, and I can cut down speed.
> It's very simply, and nice. Thanks, Alan.
>
> But if I do Ctrl+C for example in FTP is transfering file,
> computer where shaper is running (a router) will hang. I must
> do cold restart.
> Alan or somebody, please, help me. I reach end of my
> knowledge and my power.
>
> Than You all very much for Your replies.
>
> Have a nice weekend.
>
> Martin Och
> CS-COMPEX
> Czech Republic
>
> martin.och@usa.net
>
> -
> To unsubscribe from this list: send the line "unsubscribe
> linux-kernel" in
> the body of a message to majordomo@vger.rutgers.edu
> Please read the FAQ at http://www.tux.org/lkml/
>

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: jens@pinguin.conetix.de: "Re: fsync on large files"
Previous message: Linus Torvalds: "Re: Linux-2.2.2-pre2.."