From: Techside Security <security@techside.it>
To: netfilter@lists.netfilter.org
Subject: Re: 2 Internet connection and one local network -- RESOLVED
Date: Wed, 10 Jan 2007 16:44:07 +0100 [thread overview]
Message-ID: <45A509C7.1010201@techside.it> (raw)
In-Reply-To: <117F5E7DA31C17478948DC39E01B948B400F9F@frost.PlumSoftwareLtd.local>
Ok, i've tried to use it because it seems that firewall don't understand
the packet coming from old line (without rule)....
the result i great!!!
Now all works, I have setup the rule for all the two ethernet card of
the internet lines.
echo 0 > /proc/sys/net/ipv4/conf/eth1/rp_filter
echo 0 > /proc/sys/net/ipv4/conf/eth2/rp_filter
Thanks a lot!!
Matt ha scritto:
> Sorry I missed this part:
>
>>>> What is the meaning of: echo 0 > /proc/sys/net/ipv4/conf/eth1/rp_filter
>
> I think it disables the reverse path filter for that interface (eth1). Now you might ask, what is the reverse path filter? And I don't know! Apparently it does this:
>
>> # prevent incoming packets on masqueraded connections from being dropped
>> # as "martians" due to the destination address being translated before the
>> # rp_filter check is performed
>
> However, when I commented out the line it made no difference so I've left it there for people to comment back in if they find they have problems as described.
>
>
> Regards,
>
> Matt.
>
>
>
>
>
prev parent reply other threads:[~2007-01-10 15:44 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-01-09 8:27 2 Internet connection and one local network Techside Security
2007-01-10 9:37 ` Matt
2007-01-10 10:10 ` anyone can tell me what`r these ? ArioS
2007-01-10 14:43 ` 2 Internet connection and one local network Techside Security
2007-01-10 14:39 ` Matt
2007-01-10 15:44 ` Techside Security [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=45A509C7.1010201@techside.it \
--to=security@techside.it \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.