On Sun, Mar 19, 2006 at 01:09:54PM +0100, Krzysztof Oledzki wrote: > > > On Sun, 19 Mar 2006, Alexander Samad wrote: > > >On Sun, Mar 19, 2006 at 01:37:39AM +0100, Krzysztof Oledzki wrote: > >> > >> > >>On Fri, 17 Mar 2006, Alexander Samad wrote: > >> > >>>Hi > >>> > >>>I was resently setting up my new firewall usimng openwrt on a linksys. > >>> > >>>I got around to setting up my adsl connection and added into my iptables > >>>these commands ... snip > > > >makes sense, ran foul of the man page > > > > Workaround: activate this option and add a rule to your firewall > >configuration like: > > iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN \ > > -j TCPMSS --clamp-mss-to-pmtu > > You must have some old version of this man page (and probaby iptables). > > Current version contains: > > Workaround: activate this option and add a rule to your firewall > configuration like: > > iptables -t mangle -A FORWARD -p tcp --tcp-flags SYN,RST SYN \ > -j TCPMSS --clamp-mss-to-pmtu using etch debian amd64 port.... Thanks again > > Best regards, > > Krzysztof Ol?dzki
Attachment:
signature.asc
Description: Digital signature
