Re: can't ping lan
On Sun, Jul 06, 2003 at 05:21:37PM +0200, Nicos Gollan wrote:
> On Sunday 06 July 2003 16:57, Vikki Roemer wrote:
> > Hi
> > I'm trying to set up IP masquerading. I had it set up under a previous
> > install, but I can't get it going now. The problem seems to be related to
> > the fact that I can't ping the other computer on the LAN, the one that's
> > going to be behind this one. Everytime I try to ping, this is the output I
> > get:
> > $ ping hal10000
> > PING hal10000 (172.17.0.2): 56 data bytes
> > ping: sendto: Operation not permitted
> > ping: wrote hal10000 64 chars, ret=-1
> > ping: sendto: Operation not permitted
> > ping: wrote hal10000 64 chars, ret=-1
> > ping: sendto: Operation not permitted
> > ping: wrote hal10000 64 chars, ret=-1
>
> Try running ping as root. If that works:
>
> Did you install bastille or some other security hardening tool? Ping needs to
> be run setuid root to access raw sockets. Check with 'ls -l `which ping`'
> whether the binary it setuid root. This is standard, but some of the
> mentioned tools change it to improve security.
Yes, I did install bastille, but ping is still setuid root. Or at least, I
assume that's what the 's' in -rwsr-xr-x means? Sorry, I'm still a newbie.
So, what else could it be?
TIA.
--
Vikki Roemer Homepage: http://www.2khiway.net/users/vroemer
Registered Linux user #280021 http://counter.li.org/
10 SIN
20 GOTO HELL
PGP fingerprint: 0A3E 0AE4 CCD9 FF31 B4BB C859 2DE1 B1D8 5CE0 1578
Keyserver: http://pgp.mit.edu/
-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GAT d-(?) s: a--- C++++(++) UL++++ P+ L+++>++++ E W++ N+ o?
K- w--() O? M? V?(-) PS+(+++) PE(++) Y+ PGP++ t+@ 5 X-()
R*(?) tv-- b+++(++) DI+ D--(?) G e-(*)>+++++ h! r x?
------END GEEK CODE BLOCK------
Reply to: