Hi, I just spend too much time on an *extremely* trivial issue, so I thought I'd share it for future reference with other braindead people.
To get ip_conntrack_sip and ip_conntrack_h323 to work while masquerading, just copy /usr/share/shorewall/modules to /etc/shorewall/modules and add the sip and h323 modules in appropriate places: loadmodule ip_conntrack_sip loadmodule ip_conntrack_h323 ... loadmodule ip_nat_sip loadmodule ip_nat_h323 Also restart Shorewall. These modules are in stock kernels as of 2.6.18, you can check by issuing modprobe ip_conntrack_sip. If you're like me and forget to also load the ip_nat_* modules, nothing 'just' works. If you're not like me, it _does_ just work very nicely... Bye, -- - Pieter ------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier. Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
