[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipfilter
Subject:    Re: ipnat returning "host unreachable" errors
From:       Graham Dunn <gdunn () inscriber ! com>
Date:       2001-04-30 19:15:08
[Download RAW message or body]

*narf*

lurking at the end of /etc/ipf.rules:

block out from 10.1.0.0/16 to any group 250

LessonLearned: When you're sure that your config files *couldn't*
possibly be wrong, check them anyways.

Thanks,
Graham

On Mon, Apr 30, 2001 at 12:03:44PM -0700, Crist Clark wrote:
[snip]
> > 13:30:05.812146 10.1.1.5 > hotbot.lycos.com: icmp: echo request
> > 13:30:05.812279 natted.inorth.com > 10.1.1.5: icmp: host
> > hotbot.lycos.com unreachable
> 
> Not normal. I see 10.1.1.5 is a Windoze machine. Do your rules allow 
> ICMP, in particular echo requests, from 10.1.0 to the outside? Is this 
> just a traceroute problem or one with all of the usual Internet services?

-- 
  gdunn@inscriber.com	  Graham Dunn         || ||| | ||| |||| | |||| | 

[prev in list] [next in list] [prev in thread] [next in thread]