Hi Andrew, Thank you for the tip about TARPIT, the problem is now solved.
To complete the fix I downloaded patch-o-matic-ng and the iptables source from netfilter.org: cd /usr/src svn co https://svn.netfilter.org/netfilter/trunk/patch-o-matic-ng svn co https://svn.netfilter.org/netfilter/trunk/iptables The documentation on using cvs on netfilter.org is outdated, they've converted to subversion and cvs is no longer available there. cd /usr/src/patch-o-matic-ng ./runme extra Allowed me to select the new iptables targets I wanted. cd /usr/src/linux make menuconfig && make && make modules_install && make install I added the "extensions" USE flag to my /etc/make.conf, then reran the iptables emerge. It's all working fine now. Thanks to both you and Bryce for the help you gave! Cheers, Dave Andrew Frink wrote on 02/23/06 15:23: > Dave > to get tarpit support add the "extensions" USE flag when you emerge iptables > cynyr > I was reading about the TARPIT target in the man iptables documentation, > and thought I'd like to give it a try. Unfortunately though, it seems > not to be supported in the 2.6.15-1 Gentoo kernel. > Has anyone used the TARPIT target, or know of a way to get it into the > current kernel? Any experience with this target or 'gotchas' about it? -- gentoo-user@gentoo.org mailing list
