Differences between version 14 and revision by previous author of FirewallNotes.
Other diffs: Previous Major Revision, Previous Revision, or view the Annotated Edit History
Newer page: | version 14 | Last edited on Wednesday, May 21, 2003 9:32:01 am | by CraigBox | Revert |
Older page: | version 13 | Last edited on Sunday, April 13, 2003 10:53:43 pm | by RobDawson | Revert |
@@ -65,4 +65,12 @@
(Substitute ppp0/tcp/10.69.etc/4661 with whatever you need)
You might want to read [HowToIPCHAINSHOWTO], [HowToBridgeFirewall], [HowToBridgeFirewallDSL], [HowToFirewallHOWTO], [HowToFirewallPiercing], [HowToSentryFirewallCDHOWTO] or [HowToTermFirewall]. (They're all really, REALLY old.)
+
+-----
+
+Can't access the NZ Herald? (http://www.nzherald.co.nz)
+
+Make sure you have ECN disabled (echo 0 > /proc/sys/net/ipv4/tcp_ecn) and don't have any [TOS] (TermsOfService) settings in your firewall script (iptables -t mangle -F PREROUTING might clean up any you have: don't try this without knowing what you are doing.)
+
+Alternatively, you can go with the "Don't fix good science to work with a bad implementation", or manually add rules allowing access to the NZ Herald IPs.