[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: New iptables, no server. Hmm..



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Blair L Strang wrote:

> Adam Bogacki wrote:
>
>> Hi, I've just set up iptables based on Oskar Andreasson's template
>> (eth0/eth1, http://www.faqs.org/docs/iptables) but find I can't
>> connect to the server.
>> Luckily 'flush-iptables' is to hand.
>>
>> I've added line 88 to log tcp options according to 'man psad'. Could
>> this have done it ?
>>
>> I'd be grateful for any constructive comment (apologies Oskar).
>>
>> Adam Bogacki,
>> afb@paradise.net.nz
>
>
> Might it be because INET_IP is inside the LAN_IP range?
>
> Regards,
>
> Blair.
>
Erm,  .. no. Changing the range (below) does not allow server access.
As before, it was part of Oskars default config so probably correct.
I'm still chewing on it - frustrating, I thought I was there.

Adam Bogacki,
afb@paradise.net.nz

> INET_IP="192.168.0.1"
> INET_IFACE="eth0"
> INET_BROADCAST="192.168.0.100"
>
> LAN_IP="192.168.0.2"
> LAN_IP_RANGE="192.168.0.2/16"
> LAN_IFACE="eth1"
>
> LO_IFACE="lo"
> LO_IP="127.0.0.1"
>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFCllsz18X1Fk5VORARAvZmAJ9ydDffm+slt/qGMMmRoxpSThrbcACbBNRa
LbWhORA5MwYd0TZ4IrFIrP0=
=0yvG
-----END PGP SIGNATURE-----



Reply to: