Bruce Dawson wrote:
> Also, masquerading uses timeouts, so if you want to maintain a
> mostly-idle connection to an external address, masquerading probably won't be the
> best (although you could use ipmasqadm to "pierce" the firewall for that one
> connection). Although, most ISPs don't have these kinds of connections.
Well, you could just set your masq policy timeouts really high : ipchains -M
-S 36000 0 0 . As with all things in Linux, this too, is configurable ;-)
Kenny
--
Kenny Lussier
Systems Administrator
Mission Critical Linux
******************************
If at first you don't succeed,
destroy all evidence that you
tried
******************************
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
