摩托學園討論區

[alex140000]

目前使用的核心為2.6.18-6-486-ETCH的核心，運作正常
但自編核心後(從2.6.20、2.6.24、2.6.25等都試過、我有把 /boot/config-2.6.18-6-486 cp 到 /usr/src/linux/.config 然後make oldconfig 結果還是不行)啟動時都沒有任何誤，但內部就是PING 不到外部IP(SERVER 內外部都可連上)
核心設定如下：
Networking support ->Networking options --->
[*] TCP/IP networking
[*] IP: multicasting
[*] IP: advanced router
…

IP: Netfilter Configuration
<M> IPv4 connection tracking support (required for NAT)
[*] proc/sysctl compatibility with old connection tracking
<M> IP Userspace queueing via NETLINK (OBSOLETE)
<*> IP tables support (required for filtering/masq/NAT)
<M> "recent" match support
<M> "ecn" match support
<M> "ah" match support
<M> "ttl" match support
<M> "addrtype" address type match support
<M> Packet filtering
<M> REJECT target support
<M> LOG target support
<M> ULOG target support
<M> Full NAT
<M> MASQUERADE target support
<M> REDIRECT target support
<M> NETMAP target support
< > Basic SNMP-ALG support
<M> Packet mangling
<M> ECN target support
<M> TTL target support
<M> CLUSTERIP target support (EXPERIMENT<M> ARP payload mangling AL)
<M> raw table support (required for NOTRACK/TRAC
<M> ARP tables support E)
<M> ARP packet filtering


不知還有那些沒設到，請前輩指導一下，謝謝！！

[alex140000]

剛剛看了一下 lsmod 竟然看不到 ip_tables
附上相關 config


-*- Netfilter Xtables support (required for ip_tables)
<M> "CLASSIFY" target support
<M> "CONNMARK" target support
< > "DSCP" and "TOS" target support
<M> "MARK" target support
<M> "NFQUEUE" target Support
< > "NFLOG" target support
<M> "NOTRACK" target support
< > "RATEEST" target support
< > "TRACE" target support
<M> "SECMARK" target support
< > "TCPMSS" target support
< > "TCPOPTSTRIP" target support (EXPERIMENTAL)
<M> "comment" match support
<M> "connbytes" per-connection counter match support
< > "connlimit" match support"
<M> "connmark" connection mark match support
<M> "conntrack" connection tracking match support
<M> "dccp" protocol match support
< > "dscp" and "tos" match support
<M> "esp" match support
<M> "helper" match support
< > "iprange" address range match support
<M> "length" match support
<M> "limit" match support
<M> "mac" address match support
<M> "mark" match support
< > "owner" match support
<M> IPsec "policy" match support
<M> "multiport" Multiple port match support
<M> "physdev" match support
<M> "pkttype" packet type match support
<M> "quota" match support
< > "rateest" match support
<M> "realm" match support
<M> "sctp" protocol match support (EXPERIMENTAL)
<M> "state" match support
<M> "statistic" match support
<M> "string" match support
<M> "tcpmss" match support
< > "time" match support
< > "u32" match support
< > "hashlimit" match support

[alex140000]

原因出在 /etc/sysctl.conf
2.6.18的核心時用 net.ipv4.conf.default.forwarding=1
2.6.25的核心時用 net.ipv4.ip_forward=1
原因--個人不知道