2002-Apr-04

Patched Linux 2.2.14 kernel with VPN masq patch (via http://www.impsec.org/linux/masquerade/ip_masq_vpn.html).

I configured the kernel with "make oldconfig" and used ideas from VPN Masquerade HOWTO (http://www.tldp.org/HOWTO/VPN-Masquerade-HOWTO-3.html). But I also enabled some CONFIG_IP_MASQUERADE_GENERIC and related stuff, so the compile failed after a while. I commented out those unneeded configs.

It took a long time to compile. But it worked first time. (Client on NAT network was Windows XP.) I had to reboot first, because the ip_masq_pptp module needed details found in kernel itself. (I forgot to run lilo -- used tomsrtbt to mount drive and run lilo: "chroot /mnt /sbin/lilo")

Later, I saw that the logs were filling up rapidly. I had enabled DEBUG_IP_MASQUERADE_PPTP_VERBOSE and DEBUG_IP_MASQUERADE_IPSEC_VERBOSE. I wasn't able to rmmod the ip_masq_pptp while it was in use, so I made syslogd stop logging the kern.debug messages which happened to go to three log files!

Debian logs the same stuff to different log files.