Rory O'Connor wrote: > > PING 192.168.0.2 (192.168.0.2): 56 data bytes > ping: sendto: Operation not permitted > ping: wrote 192.168.0.2 64 chars, ret=-1 > ping: sendto: Operation not permitted > ping: wrote 192.168.0.2 64 chars, ret=-1 > ping: sendto: Operation not permitted > > and I can't ping my debian box from my other local machine either. I > noticed in my /var/log/messages I had a bunch of these messages: > > Sep 29 20:22:36 jacktasty kernel: Packet log: output DENY eth1 PROTO=1 > 192.168.0.1:8 192.168.0.2:0 L=84 S=0x00 I=3784 F=0x0000 T=64 (#4) > Sep 29 20:22:37 jacktasty kernel: Packet log: output DENY eth1 PROTO=1 > 192.168.0.1:8 192.168.0.2:0 L=84 S=0x00 I=3786 F=0x0000 T=64 (#4) These are messages by the kernel firewalling code, saying that a packet of protocol 1 (PROTO=1) was denied from source 192.168.0.1 to destination 192.168.0.2 (your machine). Protocol 1 is icmp, which is used by the ping. So this means that the firewall on your machine is blocking icmp traffic, therefore the ping doesn't work. Because of the DENY I take that you're using a 2.2 kernel with ipchains. Try # ipchains -F INPUT # ipchains -P INPUT ACCEPT which should disable the firewall and set the default policy to accepting any traffic. If you're using a 2.4 kernel with iptables than substitute ipchains with iptables. NOTE: This disables your firewall, making your system potentially less secure. If this works you should read up on ipchains/iptables, so you know what you're doing. HTH, Viktor -- Viktor Rosenfeld WWW: http://www.informatik.hu-berlin.de/~rosenfel/
Attachment:
pgp4eZfljipm1.pgp
Description: PGP signature