Hi Eric, > # Note that tftpd requires the module ip_conntrack_tftp. (If it is > # serving via a NAT'd interface it also requires ip_nat_tftp, which must > # be loaded second). ok, just so I understand - you're running tftp via a NATed interface (judging by your earlier messages, over an OpenVPN tunnel)? If so, that would at least explain why you need the ip_conntrack_tftp module - but I fail to see why that should make it into the default /etc/modules file (and if that's the case, I guess the help message for tftpd would need adjusting too, since with my change, it's plainly wrong - ip_conntrack_tftp is not needed at all, unless one wants to use tftpd via a NATed interface - which would not be the case for the majority of users).
Don't get me wrong - I'm thankful for your input, and with it being in the list archives, it will hopefully help other users trying to go beyond the default config of a leaf box - but default settings/docs in the help file are for serving 75+% of the people, not for the odd 5% who want to do something that can't really be considered "mainstream". The people who want to go past the mainstream stuff are the ones who will have to read the docs on our site, as well as the docs on related sites (like the excellent documentation on shorewall.net or openvpn.org). We can't add every special case to the default config (or our docs), since if we would, things would be as verbose as the docs from shorewall.net or openvpn.org that apparently are too verbose to be read. I'll change the note in both files to reflect the fact that they're only needed if one serves tftpd over a NATed interface - but I can't promise the note in /etc/modules will stay - to me, it seems to be serving a very special case, which isn't what the comments in /etc/modules are all about (they're there to help first time users to get things working, not to document every conceivable use case). > This will all change, I guess, if LEAF moves to a version of shorewall > that includes the /etc/shorewall/modules file. I have no idea what that means - but I'm not up to date with the latest changes with shorewall, so that might be the reason why I'm clueless. Martin P.S. There's no need to CC me on all of the messages - as the list admin of this list, I _am_ subscribed to this, as well as every other leaf list, so all that CCing me does is making sure I get every message from you twice. ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ ------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
