[2875] in SIPB_Linux_Development
Returned mail: Cannot send message for 3 days
daemon@ATHENA.MIT.EDU (Mail Delivery Subsystem)
Tue May 23 16:55:01 2000
Date: Tue, 23 May 00 16:54:52 EDT
From: MAILER-DAEMON@MIT.EDU (Mail Delivery Subsystem)
To: <linux-dev@MIT.EDU>
----- Transcript of session follows -----
421 aeris.mit.edu.tcp... Deferred: Connection timed out during user open with aeris.mit.edu
451 <akubi@aeris.mit.edu>... Cannot send message for 3 days
----- Unsent message follows -----
Received: from GRAND-CENTRAL-STATION.MIT.EDU by MIT.EDU with SMTP
id AA19292; Sat, 20 May 00 15:15:06 EST
Received: from melbourne-city-street.MIT.EDU (MELBOURNE-CITY-STREET.MIT.EDU [18.69.0.45])
by grand-central-station.MIT.EDU (8.9.2/8.9.2) with ESMTP id QAA11208;
Sat, 20 May 2000 16:15:05 -0400 (EDT)
Received: from Jessica-Rabbit.mit.edu (IDENT:amu@JESSICA-RABBIT.MIT.EDU [18.241.1.193])
by melbourne-city-street.MIT.EDU (8.9.3/8.9.2) with ESMTP id QAA05328;
Sat, 20 May 2000 16:15:05 -0400 (EDT)
Received: by Jessica-Rabbit.mit.edu (8.8.7/4.7) id QAA27184; Sat, 20 May 2000 16:15:04 -0400
Sender: amu@JESSICA-RABBIT.MIT.EDU
To: Jesse N Pavel <jpavel@MIT.EDU>
Cc: linux-help@MIT.EDU
Subject: Re: Firewall + IP Masquerading
References: <200005201916.PAA19253@all-night-tool.mit.edu>
X-No-Markup: yes
Reply-To: linux-help@MIT.EDU
From: amu@MIT.EDU (Aaron M. Ucko)
Date: 20 May 2000 16:15:02 -0400
Message-Id: <udlvh09f06x.fsf@Jessica-Rabbit.mit.edu>
Lines: 15
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Jesse N Pavel <jpavel@MIT.EDU> writes:
> as I understand Masquerading, the gateway box will reassign port numbers
> to IP packets when sending them out; thus, returning packets that need
> to be routed to the internal network will have a variety of port
> numbers, even if they represent services such as HTTP. Does this pose
> a genuine conflict, or do I misunderstand something? If there are
A TCP stream is associated with TWO IP-address/port pairs -- one on
each end. Masquerading only modifies the pair associated with your
end of the connection, and so causes no trouble for the machines you
connect to.
--
Aaron M. Ucko, KB1CJC <amu@mit.edu> (finger amu@monk.mit.edu)