hi wizards! any clue on this one: gw2:~# route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface xx.xxx.239.144 0.0.0.0 255.255.255.240 U 0 0 0 eth0 xx.xxx.239.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1 0.0.0.0 xx.xxx.239.253 0.0.0.0 UG 0 0 0 eth1 (don't ask about that routing table, it's not mine...) gw2:~# tcpdump -ni any icmp tcpdump: listening on any 22:18:58.278359 xx.xxx.239.239 > xx.xxx.239.146: icmp: echo request (DF) 22:18:58.278720 xx.xxx.239.239 > xx.xxx.239.146: icmp: echo request (DF) 22:18:58.279334 xx.xxx.239.146 > xx.xxx.239.239: icmp: echo reply 22:18:59.278331 xx.xxx.239.239 > xx.xxx.239.146: icmp: echo request (DF) 22:18:59.278720 xx.xxx.239.239 > xx.xxx.239.146: icmp: echo request (DF) 22:18:59.279331 xx.xxx.239.146 > xx.xxx.239.239: icmp: echo reply this shows an echo-request coming in through eth1 and then leaving through eth0, before the reply is received by eth0. the return packets are not routed, it never leaves eth1. i've checked ip_forward (it's obviously on), tried setting rp_filter to 0, but no success... what else would you check? -- martin; (greetings from the heart of the sun.) \____ echo mailto: !#^."<*>"|tr "<*> mailto:"; net@madduck you work very hard. don't try to think as well.
Attachment:
pgpPHKEfECtrD.pgp
Description: PGP signature