From mboxrd@z Thu Jan 1 00:00:00 1970 From: =?ISO-8859-1?Q?G=E1sp=E1r_Lajos?= Subject: Re: Problems configuring iptables Date: Thu, 24 Aug 2006 12:57:46 +0200 Message-ID: <44ED862A.7020603@freemail.hu> References: <580B00011E6B2F4980CAC67A08FECC3AF765CE@rpo.oldplacerville.csvaluation.lan> <44EC95B0.1090808@ncemch.org> <44EC966C.6000002@ncemch.org> <44EC9CE0.10308@rtij.nl> <44ECA54A.2000905@ncemch.org> <44ECA9FE.30605@rtij.nl> Mime-Version: 1.0 Content-Transfer-Encoding: quoted-printable Return-path: In-Reply-To: <44ECA9FE.30605@rtij.nl> List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: netfilter-bounces@lists.netfilter.org Errors-To: netfilter-bounces@lists.netfilter.org Content-Type: text/plain; charset="iso-8859-1"; format="flowed" To: Martijn Lievaart Cc: netfilter@lists.netfilter.org Martijn Lievaart =EDrta: > Matt Singerman wrote: > >> This did work, yes! Thanks! I am experiencing a new problem,=20 >> though: it took an extremely long time for the connection to go=20 >> through. Once it connected, it runs at normal speed, but it took a=20 >> good 30 or 40 seconds for ssh to prompt me for my password. What=20 >> could be causing this? I am guessing it is some sort of routing issue= ? >> > Ah no. It's either reverse DNS or ident that trips you up. Ethereal is=20 > your friend, look what goes on "at the wire". > > M4 > > > I am not sure... but maybe your script blocks the DNS service... Try it on your firewalled server and on a client behind the firewall... (host www.netfilter.org AND nslookup www.netfilter.org)