From: Arthur Donkers <arthur@reseau.nl>
To: lartc@vger.kernel.org
Subject: Re: [LARTC] Splitting locally generated traffic based on destination port
Date: Sat, 31 Aug 2002 20:41:08 +0000 [thread overview]
Message-ID: <marc-lartc-103082656724817@msgid-missing> (raw)
In-Reply-To: <marc-lartc-103082070321370@msgid-missing>
On Sat, Aug 31, 2002 at 09:46:31PM +0200, Miernik wrote:
> On Sat, 31 Aug 2002, Arthur Donkers wrote:
>
> > I have added a table mail.out to /etc/iproute2/rt_tables and defined rules
> > like this:
> >
> > ip rule add fwmark 1 table mail.out
> > ip route add default via <gw on eth0 network> dev eth0 src <eth0>
> >
> > And when I do this:
> >
> > telnet <mailhost> 25
> >
> > I indeed see a SYN packet coming out of eth0 to <mailhost>, and a SYN/ACK
> > packet comes back. The problem is that it appears that the Linux box does
> > not see this SYN/ACK packet and resends the SYN packet after a few
> > seconds, which again is answered by a SYN/ACK and this goes on a few
> > times. No other packet filters are active on the Linux box (yet).
>
> Try:
>
> echo "0" > /proc/sys/net/ipv4/conf/eth0/rp_filter
>
> If it works, to make it permanent, include this line in your
> /etc/sysctl.conf file:
>
> net/ipv4/conf/eth0/rp_filter = 0
thanks ! this works !
grtz,
Arthur
>
> --
> Miernik _____________________________________
> / /
> tel.: +48603070983 / / mailto:miernik@ctnet.pl
> __________________/___/ ICQ UIN: 4004001
--
/* Disclaimer : you hire my skills, not my opinions, those are mine ! */
/* email : arthur@reseau.nl Security 'Me ? I'm not me ! I'm just a */
/* phone : (+31) 50 549 2701 is not a computer simulation of me' */
/* URL http://www.reseau.nl dirty word Red Dwarf, First Episode */
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
prev parent reply other threads:[~2002-08-31 20:41 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2002-08-31 19:03 [LARTC] Splitting locally generated traffic based on destination port Arthur Donkers
2002-08-31 19:46 ` [LARTC] Splitting locally generated traffic based on destination Miernik
2002-08-31 19:47 ` [LARTC] Splitting locally generated traffic based on destination port Sebastian Bleikamp
2002-08-31 20:41 ` Arthur Donkers [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=marc-lartc-103082656724817@msgid-missing \
--to=arthur@reseau.nl \
--cc=lartc@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.