Re: iptables problem

All of lore.kernel.org
 help / color / mirror / Atom feed

From: "Your Name" <yayati@skinternational.com>
To: fluca1978@infinito.it, linux-admin@vger.kernel.org
Subject: Re: iptables problem
Date: Tue, 15 Feb 2005 02:30:49 -0800	[thread overview]
Message-ID: <E1D0zyj-0004v9-Od@rs161.securehostserver.com> (raw)



> Hi,
> I've a problem with iptables on a machine which is a firewall. The 
logs 
> reports the following thing:
> 
> firewall:~ # grep 192.168.2.200 /var/log/messages | grep DPT=53
> Feb 14 11:45:52 firewall kernel: PUPPUFIREWALLIN=eth1 OUT=eth1 
> SRC=192.168.2.200 DST=217.97.32.2 LEN=50 TOS=0x00 PREC=0x00 TTL=126 
ID=9 
> PROTO=UDP SPT=1025 DPT=53 LEN=30
> Feb 14 11:47:40 firewall kernel: PUPPUFIREWALLIN=eth1 OUT=eth1 
> SRC=192.168.2.200 DST=217.97.32.2 LEN=72 TOS=0x00 PREC=0x00 TTL=126 
ID=812 
> PROTO=UDP SPT=1025 DPT=53 LEN=52
> 
> where the machine 192.168.2.200 is locked and cannot work with the 
DNS (port 
> 53) specified. But if I try to do an iptables-save, I got the 
following:
> 
> -A FORWARD -s 192.168.2.0/255.255.255.0 -d 212.97.32.2 -i eth1 -o 
eth1 -p tcp 
> -m tcp --dport 53 -j ACCEPT
> 


The Input interface and output Interface are the same eth1, where as it 
should have been -i eth0 -o eth1. Match ur interface numbers and it 
should work.

Regards

next             reply	other threads:[~2005-02-15 10:30 UTC|newest]

Thread overview: 54+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2005-02-15 10:30 Your Name [this message]
2005-02-15 10:39 ` iptables problem Luca Ferrari
2005-02-15 20:09   ` Andreas Unterkircher
2005-02-15 20:25     ` Adrian C.
2005-02-16  8:17     ` Luca Ferrari
  -- strict thread matches above, loose matches on Subject: below --
2008-09-05 11:12 Cam Bazz
2008-09-05 12:39 ` Matt Zagrabelny
2008-09-05 15:35 ` Grant Taylor
2007-10-06 16:28 IPtables problem Per Jørgensen
2007-10-06 18:25 ` Pascal Hambourg
2007-01-26 11:19 Iptables problem Saurabh Mehrotra
2007-01-26 13:53 ` Ted Phelps
2007-01-26 14:17   ` Saurabh Mehrotra
2007-01-26 15:17     ` Ted Phelps
2007-01-26 15:49       ` Saurabh Mehrotra
2007-01-26 15:55         ` Ted Phelps
2006-10-19  4:52 tarak
2005-11-08 17:08 IPTABLES PROBLEM Micol lupen
2005-11-08 18:56 ` Rob Sterenborg
2005-11-08 19:08 ` /dev/rob0
2005-11-01 18:06 iptables problem Ashley M. Kirchner
2005-11-02  0:31 ` Buddy wu
2005-08-28 15:53 Richard Adams
2005-02-17 18:45 Your Name
2005-02-17 19:28 ` Adam Lang
2005-02-18  8:45 ` Luca Ferrari
2005-02-15  8:27 Luca Ferrari
2004-08-25 20:04 Iptables problem Jason Opperisano
2004-08-25 19:52 Marcelo Sinhorini
2004-08-26  0:24 ` Jose Maria Lopez
2003-08-13 17:09 Glenn Hancock
2003-08-13 17:36 ` Rob Sterenborg
2003-05-14 11:45 IPTables problem Tech
2003-05-13 15:13 iptables problem hare ram
2003-05-13 17:02 ` Guilherme Viebig
2003-05-14 11:17   ` hare ram
2003-05-14 11:38     ` Bikrant Neupane
2003-03-13  9:57 Iptables problem De Jager Laubscher
2003-03-13 10:16 ` Maciej Soltysiak
2002-12-12 11:52 IPtables Problem Amit Kumar Gupta
2002-11-27  3:26 iptables problem 김도균
2003-01-17  5:32 ` Raymond Leach
2003-01-18  0:35 ` Diego Sarasua
2002-11-18 21:11 Alexandre Carlos
2002-11-18 16:16 IPTABLES problem Alexandre Carlos
2002-12-09 16:31 ` Harald Welte
2002-10-04 17:55 IPTables Problem Niel Harper
2002-06-25 11:55 Iptables problem Paulo Andre
2002-06-25 11:57 ` Ramin Alidousti
2002-06-25 10:47 Paulo Andre
2002-06-25 11:51 ` Ramin Alidousti
     [not found] <CC845BB8BC74D6119934000347DD23E87C0C09@jhbmail.autopage.co.za>
2002-06-24 16:03 ` Antony Stone
     [not found] <CC845BB8BC74D6119934000347DD23E87C0C07@jhbmail.autopage.co.za>
2002-06-24 14:26 ` Antony Stone
     [not found] <CC845BB8BC74D6119934000347DD23E87C0C01@jhbmail.autopage.co.za>
2002-06-21 14:44 ` Antony Stone

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=E1D0zyj-0004v9-Od@rs161.securehostserver.com \
    --to=yayati@skinternational.com \
    --cc=fluca1978@infinito.it \
    --cc=linux-admin@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.