Re: pptp-conntrack-nat & kernel 2.6.11

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 10/13/05, Antonio <anton.ananich@xxxxxxxxx> wrote:
> Dear Harald!
>
> On 10/12/05, Harald Welte <laforge@xxxxxxxxxxxxx> wrote:
> > if you compile a kernel with static support for pptpconntrack+nat, you
> > will see neither of the two in "lsmod".  Can you please send me
> > (privately) your kernel .config file that was used for the "statically
> > linked" kernel, and (if possible) also the kernel binary itself?
>
> To reproduce my kernel configuration you need:
> 1) kernel 2.6.14-rc3
> 2) patch for mppe&mppc support (in attachment)
> 3) .config.old (also in attachment)
>
> file .config contains config which works fine
>
> --
> Best Regards,
> Antonio
>

I'm still trying to make NAT work. Now I'm using kernel 2.6.14-rc3.
And I whant to say that it almost working! :) My Linux box connects to
Internet through router. But everyone else (who uses Windows) have not
this happy possibility...

I think that reason is There is no modules ip_conntrack_proto_gre and
ip_nat_proto_gre anywhere :(  When I was using kernel 2.4 there was
not such troubles with PPTP and NAT integration...

How can I enable connaction tracking & nat for the gre protocol? Is it
neccessary? Is it a reason of gre packets loss?

Additional information:

servak linux # cat .config | grep GRE
CONFIG_NET_IPGRE=y
# CONFIG_NET_SCH_GRED is not set
CONFIG_NET_SCH_INGRESS=y
servak linux # cat .config | grep PPTP
CONFIG_IP_NF_PPTP=m
CONFIG_IP_NF_NAT_PPTP=m
servak linux # cat .config | grep NAT
CONFIG_IP_NF_NAT=m
CONFIG_IP_NF_NAT_NEEDED=y
# CONFIG_IP_NF_NAT_SNMP_BASIC is not set
CONFIG_IP_NF_NAT_IRC=m
CONFIG_IP_NF_NAT_FTP=m
CONFIG_IP_NF_NAT_PPTP=m
# CONFIG_NATSEMI is not set

I'm using the only one rule
$IPTABLES -t nat -A POSTROUTING -o eth1 -j MASQUERADE

I hope it will be helpful to take a look at ethereal output from attach.

--
Best Regards,
Antonio

servak ~ # tethereal -ni eth0 port ! 22
Capturing on eth0
  0.000000 192.168.18.13 -> 10.0.15.10   TCP 3923 > 1723 [SYN] Seq=0 Ack=0 Win=65535 Len=0 MSS=1460
  0.003377   10.0.15.10 -> 192.168.18.13 TCP 1723 > 3923 [SYN, ACK] Seq=0 Ack=1 Win=5840 Len=0 MSS=1460
  0.003544 192.168.18.13 -> 10.0.15.10   TCP 3923 > 1723 [ACK] Seq=1 Ack=1 Win=65535 Len=0
  0.003625 192.168.18.13 -> 10.0.15.10   PPTP Start-Control-Connection-Request
  0.011403   10.0.15.10 -> 192.168.18.13 TCP 1723 > 3923 [ACK] Seq=1 Ack=157 Win=5840 Len=0
  0.014831   10.0.15.10 -> 192.168.18.13 PPTP Start-Control-Connection-Reply
  0.015027 192.168.18.13 -> 10.0.15.10   PPTP Outgoing-Call-Request
  0.025378   10.0.15.10 -> 192.168.18.13 PPTP Outgoing-Call-Reply
  0.027972 192.168.18.13 -> 10.0.15.10   PPTP Set-Link-Info
  0.031133 192.168.18.13 -> 10.0.15.10   PPP LCP Configuration Request
  0.072486   10.0.15.10 -> 192.168.18.13 TCP 1723 > 3923 [ACK] Seq=189 Ack=349 Win=6432 Len=0
  2.021009 192.168.18.13 -> 10.0.15.10   PPP LCP Configuration Request
  5.020781 192.168.18.13 -> 10.0.15.10   PPP LCP Configuration Request
  9.020412 192.168.18.13 -> 10.0.15.10   PPP LCP Configuration Request
 13.020054 192.168.18.13 -> 10.0.15.10   PPP LCP Configuration Request
 17.019746 192.168.18.13 -> 10.0.15.10   PPP LCP Configuration Request
 21.019366 192.168.18.13 -> 10.0.15.10   PPP LCP Configuration Request
 25.019017 192.168.18.13 -> 10.0.15.10   PPP LCP Configuration Request
 29.019224 192.168.18.13 -> 10.0.15.10   PPP LCP Configuration Request
 30.126655   10.0.15.10 -> 192.168.18.13 TCP 1723 > 3923 [FIN, ACK] Seq=189 Ack=349 Win=6432 Len=0
 30.126809 192.168.18.13 -> 10.0.15.10   TCP 3923 > 1723 [FIN, ACK] Seq=349 Ack=190 Win=65347 Len=0
 30.134377   10.0.15.10 -> 192.168.18.13 TCP 1723 > 3923 [ACK] Seq=190 Ack=350 Win=6432 Len=0




servak ~ # tethereal -ni eth1
Capturing on eth1
  0.000000 10.255.10.11 -> 10.0.15.10   TCP 3923 > 1723 [SYN] Seq=0 Ack=0 Win=65535 Len=0 MSS=1460
  0.001950   10.0.15.10 -> 10.255.10.11 TCP 1723 > 3923 [SYN, ACK] Seq=0 Ack=1 Win=5840 Len=0 MSS=1460
  0.002271 10.255.10.11 -> 10.0.15.10   TCP 3923 > 1723 [ACK] Seq=1 Ack=1 Win=65535 Len=0
  0.002340 10.255.10.11 -> 10.0.15.10   PPTP Start-Control-Connection-Request
  0.010038   10.0.15.10 -> 10.255.10.11 TCP 1723 > 3923 [ACK] Seq=1 Ack=157 Win=5840 Len=0
  0.013461   10.0.15.10 -> 10.255.10.11 PPTP Start-Control-Connection-Reply
  0.013767 10.255.10.11 -> 10.0.15.10   PPTP Outgoing-Call-Request
  0.023957   10.0.15.10 -> 10.255.10.11 PPTP Outgoing-Call-Reply
  0.026704 10.255.10.11 -> 10.0.15.10   PPTP Set-Link-Info
  0.029890 10.255.10.11 -> 10.0.15.10   PPP LCP Configuration Request
  0.046520   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
  0.051584   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
  0.071115   10.0.15.10 -> 10.255.10.11 TCP 1723 > 3923 [ACK] Seq=189 Ack=349 Win=6432 Len=0
  2.019747 10.255.10.11 -> 10.0.15.10   PPP LCP Configuration Request
  2.024007   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Reject
  3.058727   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
  5.019524 10.255.10.11 -> 10.0.15.10   PPP LCP Configuration Request
  5.026660   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Reject
  6.065170   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
  9.019150 10.255.10.11 -> 10.0.15.10   PPP LCP Configuration Request
  9.024229   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Reject
  9.067815   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
 12.068230   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
 13.018794 10.255.10.11 -> 10.0.15.10   PPP LCP Configuration Request
 13.022751   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Reject
 15.078196   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
 17.018484 10.255.10.11 -> 10.0.15.10   PPP LCP Configuration Request
 17.024417   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Reject
 18.080203   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
 21.018108 10.255.10.11 -> 10.0.15.10   PPP LCP Configuration Request
 21.022664   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Reject
 21.090858   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
 24.088911   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
 25.017762 10.255.10.11 -> 10.0.15.10   PPP LCP Configuration Request
 25.022829   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Reject
 27.098017   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
 29.017969 10.255.10.11 -> 10.0.15.10   PPP LCP Configuration Request
 29.023532   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Reject
 30.124691   10.0.15.10 -> 10.255.10.11 PPP LCP Configuration Request
 30.125252   10.0.15.10 -> 10.255.10.11 TCP 1723 > 3923 [FIN, ACK] Seq=189 Ack=349 Win=6432 Len=0
 30.125536 10.255.10.11 -> 10.0.15.10   TCP 3923 > 1723 [FIN, ACK] Seq=349 Ack=190 Win=65347 Len=0
 30.133012   10.0.15.10 -> 10.255.10.11 TCP 1723 > 3923 [ACK] Seq=190 Ack=350 Win=6432 Len=0
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux