* Re: Weird behavior for -j MASQUERADE, please help ! :)
[not found] ` <3CEFA216.2050406@wanadoo.fr>
@ 2002-05-25 15:56 ` Hervé Eychenne
0 siblings, 0 replies; only message in thread
From: Hervé Eychenne @ 2002-05-25 15:56 UTC (permalink / raw)
To: Valentin LAB; +Cc: netfilter
On Sat, May 25, 2002 at 04:39:18PM +0200, Valentin LAB wrote:
> Well, I've found the solution. It's in the forgotten PPPoe manual in
> kernel mode of 2.4.x (i've found it in google's cache, it had
> disappeared from the referenced link.)
Fortunately, it is documented in the (recent) iptables manpage...
> It links to this page : http://www.hgfelger.de/mss/mss.html , which is
> quite interesting to read when you have an ADSL Modem and you have
> problems as those mentionned above with kernel-mode PPPoe driver.
>
> It tells to add only one line to the firewall script :
>
> iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS
> --clamp-mss-to-pmtu
>
> if this isn't magic, i'm a toaster :))
> This work really fine for me now.
>
> Could somebody comment this line for my education ? (or give a quick
> link to explain, or give the state-of-the-art on the TCPMSS target)
Isn't the manpage explication sufficient?
RV
--
_
(°= Hervé Eychenne
//)
v_/_ WallFire project: http://www.wallfire.org/
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2002-05-25 15:56 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
[not found] <3CEE81BA.4030904@wanadoo.fr>
[not found] ` <3CEFA216.2050406@wanadoo.fr>
2002-05-25 15:56 ` Weird behavior for -j MASQUERADE, please help ! :) Hervé Eychenne
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.