similar to: will this enhance peformace ?

hi all At last i got sucess !.. but am confused y it didnt work earlier..the difference today was that i reinstalled RH7.2 & complied kernel 2.4.16(not 17).. rest was same..... & the bandwidth too is under control!.. is it normal for to get more than said bandwidth--i mean i restricted a network with 8Kbit(with same script as below) but still was able to get a download(ftp) of

hi all, i want to try htb3 with imq downloaded & patched imq & htb3 with kernel-2.4.18 on rh7.2 but got STUCK on step 1 :( this are what i did can anyone guide me what went wrong on the first step itself !! [root@cab1 root]# modprobe imq numdevs=1 modprobe: Can''t locate module imq [root@cab1 root]# [root@cab1 root]# tc qdisc add dev imq0 handle 1: root htb default 1 Cannot find

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=64 ------- Additional Comments From tobias@portfolio16.de 2003-04-21 23:51 ------- Hi, I think I just found a problem with the patch... It was my fault to use a automatic build system and not check it... In the end the patch didn't apply in its whole and I didn't discover it, because the build system just went on.

--mYCpIKhGyMATD0i+ Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Netfilter Core Team Security Advisory =20 CVE: CAN-2003-0187 Subject: Netfilter / Connection Tracking Remote DoS Released: 01 Aug 2003 Effects: Any remote user may be able to DoS a machine

hi all.. i just noticed while patching ulog(patch-o-matic) with kernel-2.4.17--->patch not applied ! would be gratefull if someone can help on this ( Gurus ''am not a programmer pls.):-( arindam

https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=511 Summary: Premature ip_conntrack timer expiry on 3+ window size advertisements Product: netfilter/iptables Version: linux-2.6.x Platform: All OS/Version: All Status: NEW Severity: minor Priority: P2 Component: ip_conntrack

i just got a ''ip_conntrack: table full, dropping packet'' because a p2p-application ran amok. i''ve killed the process but /proc/net/ip_conntrack still got more than 7000 (now stale) entries of 8184 max. since the table is now after ~70 minutes down to 6995 entries, i wonder if i can flush this table manually. the entries in there look like tcp 6 155674

Hello all, I have to setup a system that required to block users access internet in work time but let them access internet on specified time window e.g lunch time. I plan to use iptables and squid to do block and web caching but I have no idea how to control access on time frame. Could any one of you experienced with this can give some starting point /document/howto start reading ? My

hi all, i am getting a lot of neighbour table overflow in my syslog file... we use slavkware8.1 with kernel2.4.19 squid2.5s1 iptables1.2.7a & iproite-ss020116.. there are two providers & this box has 5 ethernet and i havent seen it handle going less that 2.5mb traffic even at off peak hours !.. the kernel was _NOT_ configured with arp daemon support.. Dec 7 09:11:32 ICG last message

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=49 ------- Additional Comments From laforge@netfilter.org 2003-02-14 08:39 ------- what patches from patch-o-matic do you use? Do you know how to reproduce this behaviour? ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.

hi all, i saw this message today & am reporting it(as it says) [root@cab1 surfNet]# tail -f /var/log/messages Sep 1 04:02:03 cab1 syslogd 1.4.1: restart. Sep 1 09:35:27 cab1 kernel: HTB: mindelay=500, report it please ! [root@cab1 root]# iptables -V iptables v1.2.6a [root@cab1 root]# tc -V tc utility, iproute2-ss020116 [root@cab1 root]# uname -a Linux cab1 2.4.19-r #2 Sun Aug 25 01:49:24

Hi, I have an DNAT ISSUE with PREROUTING. This is my setup. I have 2 firewalls running iptables. Pls asume 1.2.3.4/29 is the internet interace of FIRST firewall. 2.3.4.5/29 is the internet interface of SECOND firewall. it has DMZ zone. in that DMZ zone, mail server runnig @ 192.168.100.3 Now I want to DNAT port 25 of FISRT firewall (i.e - its ip address - 1.2.3.4/29) to the internet ip

I am running OpenSSH_6.7p1 on Slackware 14.1 x64. I haven't modified a stock config. On Linux TCP timeouts are controlled by these 3 files: $ cat /proc/sys/net/ipv4/tcp_keepalive_time \ > /proc/sys/net/ipv4/tcp_keepalive_intvl \ > /proc/sys/net/ipv4/tcp_keepalive_probes 7200 75 9 These are their default values. I modified them to 3, 1, 1 respecitively before establishing a new SSH

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=40 ------- Additional Comments From pmccurdy@net-itech.com 2004-08-04 06:06 ------- We have managed to replicate this bug in-house. It seems to happen to us when we have a machine acting as a NAT router that we saturate with outgoing UDP packets; we use hping2 to generate them from a workstation connected via 100 Mbit

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=39 Summary: can't execute 'make modules' Product: netfilter/iptables Version: patch-o-matic Platform: i386 OS/Version: RedHat Linux Status: NEW Severity: major Priority: P2 Component: ip_tables (kernel) AssignedTo:

Hello, I am testing ssh with occasional network disconnection between server and client during these days. I found ssh sometimes hangs if the disconnection happens after the connection is established but before ssh_exchange_identification completes. The ssh configuration files show that both client and server alive options are set. In /etc/ssh/ssh_config: # Send keepalive messages to the server.

If I execute these via command line, will they persist after a reboot? Or, should I be putting these into a file like /etc/sysctl.conf? --------------snip-------------- /sbin/sysctl -w net.ipv4.tcp_max_syn_backlog=2048 /sbin/sysctl -w net.ipv4.tcp_fin_timeout=30 /sbin/sysctl -w net.ipv4.tcp_keepalive_intvl=10 /sbin/sysctl -w net.ipv4.tcp_keepalive_probes=7 /sbin/sysctl -w

I get these errors from the following settings in /etc/sysctl.conf file: # Custom Settings: net.ipv4.tcp_max_syn_backlog=2048 net.ipv4.tcp_fin_timeout=30 net.ipv4.tcp_keepalive_intvl=10 net.ipv4.tcp_keepalive_probes=7 net.ipv4.tcp_keepalive_time=1800 net.ipv4.tcp_max_tw_buckets=360000 net.ipv4.tcp_synack_retries=3 net.ipv4.tcp_rmem="4096 87380 16777216" net.ipv4.tcp_wmem="4096

Hi ! I''ve a router linux with 3 eths in order to share internet connection: 1:lo 2:eth0-> Internet Connection (DHCP) 3:eth1-> gateway wired hosts -> 192.168.101.254 4:eth2-> gateway wireless hosts -> 192.168.212.254 / 192.168.230.254 / 192.168.210.254 / ... eth2 haves diferents IP Aliasings because it connect to a switch which connect 4 access points (linksys), each

http://bugzilla.mindrot.org/show_bug.cgi?id=443 djm at mindrot.org changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |WONTFIX ------- Additional Comments From djm at mindrot.org 2003-01-03 14:58