From: "U.Mutlu" <for-gmane@mutluit.com>
To: netfilter@vger.kernel.org
Subject: Re: IPTABLES + PREROUTING + --set-mark + Ubuntu
Date: Fri, 16 Jan 2015 03:53:42 +0100 [thread overview]
Message-ID: <m99ufm$p8k$1@ger.gmane.org> (raw)
In-Reply-To: <CAJb3rWB-MCW_U3NMNNo-yUnRH1LWCFxs_aeT-oAP=JvVWBpfRw@mail.gmail.com>
The Media Server wrote, On 01/16/2015 03:45 AM:
> Yes sorry for my english.
>
> I will do more experiment and I understand it is pretty complicated indeed.
>
> Just to clarify.. when I type my public ip address on a browser. I get
> a time out error.
> But I can see my packets marked, and my tcp connection trying to acces
> in tcpdump port 80 like so:
> 21:35:32.336899 IP xxx.xxx.xxx.xxx.com.54727 > 192.168.2.20.http:
> Flags [S], seq 1143628041, win 8192, options [mss 1352,nop,wscale
> 8,nop,nop,sackOK], length 0
>
> but when i add this rule ( to go straight in my table ht (2) for
> incoming connections)
> ip rule add from 192.168.2.0/24 table ht
> I mean when, in a web browser I type my public ip, it works, no time
> out error and i see my html content. The connection work.
>
> thks!
>
>
>> Does ssh login to your host from another host work? Ie.:
>> ssh -p22 username@hostname_or_ip
>> (change 22 if your ssh-server on your host is operating at an other port)
>
> it works on my network 192.168.2.20 from another computer
> but not if I try to connect with my public ip address from another computer
>
> but it works with public ip with this rule:
> ip rule add from 192.168.2.0/24 table ht
>
>
> ** my gateway address is my router
Then maybe you forgot to open and forward the port on the router?
Try it with ssh. If that works then the rest is analogous, ie. it should then
work too.
next prev parent reply other threads:[~2015-01-16 2:53 UTC|newest]
Thread overview: 23+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-01-16 2:45 IPTABLES + PREROUTING + --set-mark + Ubuntu The Media Server
2015-01-16 2:53 ` U.Mutlu [this message]
-- strict thread matches above, loose matches on Subject: below --
2015-01-16 20:05 P-o Lévesque
2015-01-16 14:03 The Media Server
2015-01-16 5:33 The Media Server
2015-01-16 8:15 ` U.Mutlu
2015-01-16 3:49 P-o Lévesque
2015-01-16 4:51 ` The Media Server
2015-01-16 3:12 The Media Server
2015-01-16 3:31 ` U.Mutlu
2015-01-16 2:24 The Media Server
2015-01-16 2:35 ` U.Mutlu
2015-01-16 2:15 The Media Server
2015-01-16 2:27 ` U.Mutlu
2015-01-16 2:02 The Media Server
2015-01-16 2:14 ` U.Mutlu
2015-01-16 1:53 The Media Server
2015-01-16 2:02 ` U.Mutlu
2015-01-16 1:48 The Media Server
2015-01-15 22:34 The Media Server
2015-01-16 0:59 ` U.Mutlu
2015-01-16 1:03 ` U.Mutlu
2015-01-16 9:16 ` Pascal Hambourg
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='m99ufm$p8k$1@ger.gmane.org' \
--to=for-gmane@mutluit.com \
--cc=netfilter@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.