1) the ipt_conntrack_irc and ipt_nat_irc modules need to know
what
ports you are connecting to the IRC servers on. You pass
these
port numbers as a parameter to the module when loaded.
2) IRC clients behind the firewall *must* use their *inside* ip
address *not* the firewall ip address ... this is notable in
MIRC -- the client defaults to using the ip reported by the
server. -- that turns the connection requests into something
that iptables will drop as a forged IRC command -- check
your logs.
In my case:
/sbin/modprobe ip_conntrack_irc
ports=6663,6664,6665,6666,6667,6668,6669,7000
/sbin/modprobe ip_nat_irc ports=6663,6664,6665,6666,6667,6668,6669,7000
You can edit ip_conntrack_irc.c and ip_nat_irc.c and change MAX_PORTS
if you
need more ports to connect to and then rebuild the modules.
On 2002.11.02 10:42 Mihai Tanasescu wrote:
> I have installed the kernel module for conntracking irc connections.
> Still I can only receive dcc sends but I can't initiate any dcc send
> sessions. I get the error message failed to connect or something like
> that.
> What am I doing wrong?
>
