Re: kernel config question(s)
Sean 'Shaleh' Perry wrote: > > I have sysctl on my Debian box running potato. It is only available to root. > Thanks, I found it in the procps package in unstable, compiled it on my slink system and it seems to work. thanks, -- tony mollica [EMAIL PROTECTED]
Re: kernel config question(s)
Subject: kernel config question(s) Date: Sun, Mar 26, 2000 at 03:07:44PM -0800 In reply to:tjm Quoting tjm([EMAIL PROTECTED]): >| After looking through much documentation, I'm >| still not sure whether I have the info I need. >| Going through the config stuff to build a new >| 2.2.14 kernel (up from 2.2.11) I notice that the >| previous parameter of 'CONFIG_IP_ALWAYS_DEFRAG' >| is now missing or not offered in this 2.2.14 >| kernel config. I have found that it is in the sysctl >| docs and directory (/proc/sys/net/ipv4/ip_always_defrag) >| and is off by default. My questions are these: >| >| Is it true that this now needs to be set 'manually' >| somewhere in the startup scripts ? >| >| Is there some utility other than >| 'echo 1 > /proc/sys/...{etc}' that can be used? >| >| and >| I may have overlooked the docs for this sysctl >| feature. Where might I find the clearest explanation >| of how and what parameters are the most important and >| what the default settings are compared to the previous >| kernel configs. >| uname -a Linux mtntop 2.2.14 #10 Wed Mar 22 12:28:34 EST 2000 i586 unknown rgrep -r ip_always_defrag /usr/src/linux/Doc*/* /usr/src/linux/Documentation/Configure.help: Enabling masquerading automagically enables ip_always_defrag too. HTH -- Keyboard not connected, press to continue. ___
Re: kernel config question(s)
> > Also, the firewall configuration tool at > http://linux-firewall-tools.com/linux/firewall/index.html > generated a file with lines such as: > > # Enable always defragging Protection > sysctl -w net.ipv4.ip_always_defrag=1 > > The utility states that the firewall will work on > Redhat boxes. Is that sysctl line a utility that > is common only to Redhat? To use this on Debian I > would assume that the line changes to > >echo 1 > /proc/sys/net/ipv4/ip_always_defrag > I have sysctl on my Debian box running potato. It is only available to root. > Is this correct, or am I missing something? There > are other config lines like this, not only the > ip_always_defrag. > > Overall, I'm just trying to understand what might > affect my machines after any upgrades, especially > kernel upgrades. Wading through all the docs gets > somewhat tedious at times. > Frankly I dont play with firewalling. Perhaps another mail with a more direct subject will help. Like "what is ip_always_defrag in the kernel and do I want it"? People scan debian-user and respond to subjects that catch their eye. The volume here is fairly high.
Re: kernel config question(s)
Sean 'Shaleh' Perry wrote: > > Why do you think you need this? No box I have running 2.2.14 have I had to > deal with this. Just curious as to why the ip_always_defrag choice was removed from configuration list and buried in the sysctl stuff. What this means to me I'm not quite sure. I picked ip_always_defrag as an example because the documentation suggests there is some advantage to having this switched on. Also, the firewall configuration tool at http://linux-firewall-tools.com/linux/firewall/index.html generated a file with lines such as: # Enable always defragging Protection sysctl -w net.ipv4.ip_always_defrag=1 The utility states that the firewall will work on Redhat boxes. Is that sysctl line a utility that is common only to Redhat? To use this on Debian I would assume that the line changes to echo 1 > /proc/sys/net/ipv4/ip_always_defrag Is this correct, or am I missing something? There are other config lines like this, not only the ip_always_defrag. Overall, I'm just trying to understand what might affect my machines after any upgrades, especially kernel upgrades. Wading through all the docs gets somewhat tedious at times. Thanks for the one and only reply, -- tony mollica [EMAIL PROTECTED]
RE: kernel config question(s)
Why do you think you need this? No box I have running 2.2.14 have I had to deal with this.