LISTSERV - SCIENTIFIC-LINUX-USERS Archives

SCIENTIFIC-LINUX-USERS Archives

April 2006

SCIENTIFIC-LINUX-USERS@LISTSERV.FNAL.GOV

	LISTSERV Archives
	SCIENTIFIC-LINUX-USERS Home
	SCIENTIFIC-LINUX-USERS April 2006

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Re: SL 4.2: enabling ip forwarding?
From:	Angel Tsankov <[log in to unmask]>
Reply To:	Angel Tsankov <[log in to unmask]>
Date:	Thu, 6 Apr 2006 23:57:25 +0300
Content-Type:	text/plain
Parts/Attachments:	text/plain (70 lines)

----- Original Message ----- 
From: "Connie Sieh" <[log in to unmask]>
To: "Angel Tsankov" <[log in to unmask]>
Cc: <[log in to unmask]>
Sent: Thursday, April 06, 2006 11:51 PM
Subject: Re: SL 4.2: enabling ip forwarding?


> On Thu, 6 Apr 2006, Angel Tsankov wrote:
> 
>> >> >> >> > How can I setup an SL 4.2 to write 1 to /proc/sys/net/ipv4/ip_forward instead of 0 at boot time?
>> >> >> >>
>> >> >> >> It turns out that I need to apply patch-o-matic to the kernel source and recompile.
>> >> >> >> Where can I find SL sources?
>> >> >> >>
>> >> >> >
>> >> >> > I do not think you need to do patch-o-matic to do ip_forward.  If you need
>> >> >> > the kernel sources they are at
>> >> >> >
>> >> >> > ftp://ftp.scientificlinux.org/linux/scientific/4.x/SRPMS/vendor/errata/
>> >> >>
>> >> >> In fact, the URL is
>> >> >>
>> >> >> ftp://ftp.scientificlinux.org/linux/scientific/42/SRPMS/vendor/errata/
>> >> >>
>> >> >> I downloaded the kernel sources and I'm going to patch and recompile them to fix the bug with "iptables -t mangle -j TTL"
>> >> >> producing
>> >> >> "No chain/target/match by that name".
>> >> >
>> >> > What are you expecting to change?
>> >>
>> >> Well, this is what I get:
>> >>
>> >> [root@VM2 ~]# iptables -t mangle -A POSTROUTING -j TTL --ttl-set 1
>> >> iptables: No chain/target/match by that name
>> >> [root@VM2 ~]#
>> >>
>> >> Do you think this is what I should get?
>> >>
>> >
>> > Did you check to see if the ttl kernel module is loaded with lsmod?
>> > If it is not there then you need to load it.  You can just test it with
>> >
>> >  modprobe /lib/modules/2.6.9-34.EL/kernel/net/ipv4/netfilter/ipt_ttl.ko
>> >
>> > Substitute 2.6.9-34.EL with your kernel version.
>> >
>> > If that works then put it in
>> >
>> >  /etc/sysconfig/iptables-config
>> 
>> First I did this:
>> 
>> [root@VM2 sysconfig]# modprobe /lib/modules/2.6.9-22.0.1.EL/kernel/net/ipv4/netfilter/ipt_ttl.ko
>> FATAL: Module /lib/modules/2.6.9_22.0.1.EL/kernel/net/ipv4/netfilter/ipt_ttl.ko not found.
> 
> This implied that the file did not exist.

I think the file exists:

[root@VM2 sysconfig]# ls -al /lib/modules/2.6.9-22.0.1.EL/kernel/net/ipv4/netfilter/ipt_ttl.ko
-rwxr--r--  1 root root 3412 Oct 27 19:16 /lib/modules/2.6.9-22.0.1.EL/kernel/net/ipv4/netfilter/ipt_ttl.ko
[root@VM2 sysconfig]#

> Try modprobe ipt_ttl

This seems OK:
[root@VM2 sysconfig]# modprobe ipt_ttl
[root@VM2 sysconfig]#

ATOM RSS1 RSS2

LISTSERV.FNAL.GOV