[prev in list] [next in list] [prev in thread] [next in thread] 

List:       linux-ipchains
Subject:    [Ipchains] Re: [Ipchains] Re: [Ipchains] Re: [Ipchains] ipchains
From:       Kins Orekhov <korekhov () outlook ! net>
Date:       1999-06-30 20:15:45
[Download RAW message or body]


> Jun 27 21:27:23 ibiza kernel: Packet log: good_bad DENY eth0 PROTO=1
> 198.144.202.125:8 36.59.1.145:0 L=84 S=0x00 I=843 F=0x0000 T=63
> This is for a packet comming from 198.144.202.125 going (via eth0) to
> 36.59.1.145.  The port numbers don't make sense to me, but I can't recall
> whether this was a ping or an ssh attempt on 36.59.1.145.

PROTO=1 means that was ICMP.
BTW, you let icmp-pong-packets to be forwarded BUT these packets are
replies to icmp-ping-packets which you don't let go!
Try add ipchains -A good-bad -p ICMP --icmp-type ping -j ACCEPT

And tell me please your internal "good" network on eth1 and "bad" on
eth0?

-- 
Kins Orekhov
E-mail: korekhov@outlook.net
Phone: 773-775-2099, ext. 226




----------------------------------------------
To unsubscribe to this list, write an email to
ipchains-request@rustcorp.com with a body of
'unsubscribe'.

www.rustcorp.com - web site
ftp.rustcorp.com - ftp site

Mail Archives:
http://www.starshadow.com/pipermail/ipchains
http://www.progressive-comp.com/Lists/?l=linux-ipchains&r=1&w=2#linux-ipchains
----------------------------------------------

[prev in list] [next in list] [prev in thread] [next in thread]