RE: Masq port ranges

To:	"'lvs-users@xxxxxxxxxxxxxxxxxxxxxx'" <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	RE: Masq port ranges
From:	Peter Mueller <pmueller@xxxxxxxxxxxx>
Date:	Thu, 18 Oct 2001 11:20:34 -0700

> Just a quickie.  Where do I increase/alter the MASQ port 
> range in 2.2 or 2.4?
> 
this should be the standard dynamic port range for linux.  to change this:
(it is 1024-4999 by default) 

redhat 6+ - /etc/sysctl.conf : net.ipv4.ip_local_port_range = 32768 60099
others - (I think it is) echo "32768 60099" >
/proc/sys/net/ipv4/ip_local_port_range

don't forget to change your firewall rules appropriately.  on my masq boxes
I have something like:
# eth0 = public

# allow return tcp packets from connections we init
/sbin/ipchains -A input -i eth0 -p tcp ! -y -j ACCEPT

# allow UDP return packets.. its more dangerous, but we like games :)
/sbin/ipchains -A input -i eth0 -p udp ! -s masq.network.goes.here/24 -d
public.ip.goes.here -j ACCEPT

<Prev in Thread]	Current Thread	[Next in Thread>
Masq port ranges, Stuart Fox RE: Masq port ranges, Peter Mueller <=

Previous by Date:	Re: IPVS sync daemon, Fabrice
Next by Date:	Sendmail with LVS, Dmitry Dan Brovkovich
Previous by Thread:	Masq port ranges, Stuart Fox
Next by Thread:	Sendmail with LVS, Dmitry Dan Brovkovich
Indexes:	[Date] [Thread] [Top] [All Lists]