Red Hat Bugzilla – Bug 91102
pptp-conntrack-nat.patch missing in 2.4.20-13.8
Last modified: 2007-04-18 12:53:49 EDT
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.3) Gecko/20030314
Description of problem:
I use RH 8 as a "homegrown" firewall. After upgrading to the latest kernel
eratta from 2.4.18-27.8.0 to 2.4.20-13.8, my PPTP clients behind the firewall
can no longer connect to the PPTP server. After checking out the kernel config
in 2.4.20-13.8 it appears the pptp-conntrack-nat option is not there anymore.
Can you add this patch back in? I will have to revert to 2.4.18-27.8.0 to get
this much needed feature in our environment.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Try to connect to PPTP server through firewall using RH8 with
Actual Results: May 18 10:29:36 linux pptp:
log[decaps_gre:pptp_gre.c:208]: read: Protocol not available
linux pptp: log[callmgr_main:pptp_callmgr.c:262]: Closing connection
May 18 10:29:37 linux pppd: Exit.
Expected Results: NAT'ed PPTP clients should be able to connect through RH 8
ehm even 2.4.18-X didn't have a pptp NAT patch
hmmm - my memory is coming back! Yes, maybe I did patch the kernel to provide
this support. Sorry 'bout that :-) Does RH plan on providing this patch in the
future to the stock kernel?
I used "patch-o-matic" from netfilter.org to try and apply this patch to
2.4.20-13.8, and it fails. It applies fine to my 2.4.18-27.8.0 kernel, since
that was working fine before the kernel upgrade. Back to 2.4.18-27 until I can
get this working with a newer kernel. Do you know which security patches need
to be applied to 2.4.18-27.8.0 to fix the DoS issue that 2.4.20-13.8 fixes?
Closing since this wasnt an RH bug in the end