Routingproblem iptable-dump From: [EMAIL PROTECTED] Zoner:
net (internetanslutningen) 80.252.161.56/252 (eth0) dmz 80.252.163.160/240 (eth1) loc 192.168.1.0/255 (eth2) dns 80.252.163.162 (eth1:0) iptables -L -n Chain INPUT (policy DROP) target prot opt source destination rfc1918 all -- 0.0.0.0/0 0.0.0.0/0 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:67:68 net2fw all -- 0.0.0.0/0 0.0.0.0/0 loc2fw all -- 0.0.0.0/0 0.0.0.0/0 dmz2fw all -- 0.0.0.0/0 0.0.0.0/0 dns2all all -- 80.252.163.162 0.0.0.0/0 common all -- 0.0.0.0/0 0.0.0.0/0 LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix `Shorewall:dns2all:REJECT:' reject all -- 0.0.0.0/0 0.0.0.0/0 Chain FORWARD (policy DROP) target prot opt source destination rfc1918 all -- 0.0.0.0/0 0.0.0.0/0 net2all all -- 0.0.0.0/0 0.0.0.0/0 net2dmz all -- 0.0.0.0/0 0.0.0.0/0 net2dns all -- 0.0.0.0/0 80.252.163.162 loc2all all -- 0.0.0.0/0 0.0.0.0/0 loc2all all -- 0.0.0.0/0 0.0.0.0/0 loc2all all -- 0.0.0.0/0 80.252.163.162 dmz2all all -- 0.0.0.0/0 0.0.0.0/0 dmz2all all -- 0.0.0.0/0 0.0.0.0/0 dmz2all all -- 0.0.0.0/0 80.252.163.162 dns2net all -- 80.252.163.162 0.0.0.0/0 dns2all all -- 80.252.163.162 0.0.0.0/0 dns2all all -- 80.252.163.162 0.0.0.0/0 common all -- 0.0.0.0/0 0.0.0.0/0 LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix `Shorewall:dns2all:REJECT:' reject all -- 0.0.0.0/0 0.0.0.0/0 Chain OUTPUT (policy DROP) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:67:68 fw2net all -- 0.0.0.0/0 0.0.0.0/0 all2all all -- 0.0.0.0/0 0.0.0.0/0 fw2dmz all -- 0.0.0.0/0 0.0.0.0/0 fw2dns all -- 0.0.0.0/0 80.252.163.162 common all -- 0.0.0.0/0 0.0.0.0/0 LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix `Shorewall:dns2all:REJECT:' reject all -- 0.0.0.0/0 0.0.0.0/0 Chain all2all (4 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED common all -- 0.0.0.0/0 0.0.0.0/0 LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix `Shorewall:all2all:REJECT:' reject all -- 0.0.0.0/0 0.0.0.0/0 Chain common (5 references) target prot opt source destination icmpdef icmp -- 0.0.0.0/0 0.0.0.0/0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x10/0x10 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x04/0x04 REJECT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:137:139 reject-with icmp-port-unreachable REJECT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:445 reject-with icmp-port-unreachable reject tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:135 DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 DROP all -- 0.0.0.0/0 255.255.255.255 DROP all -- 0.0.0.0/0 224.0.0.0/4 DROP all -- 0.0.0.0/0 80.252.161.59 DROP all -- 0.0.0.0/0 192.168.1.255 DROP all -- 0.0.0.0/0 80.252.163.175 Chain dmz2all (4 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 Chain dmz2fw (1 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8 dmz2all all -- 0.0.0.0/0 0.0.0.0/0 Chain dns2all (4 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 Chain dns2net (1 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:53 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:53 dns2all all -- 0.0.0.0/0 0.0.0.0/0 Chain fw2dmz (1 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 all2all all -- 0.0.0.0/0 0.0.0.0/0 Chain fw2dns (1 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:53 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:53 all2all all -- 0.0.0.0/0 0.0.0.0/0 Chain fw2net (1 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:53 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:80 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:53 all2all all -- 0.0.0.0/0 0.0.0.0/0 Chain icmpdef (1 references) target prot opt source destination ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 0 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 11 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 12 Chain loc2all (4 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 Chain loc2fw (1 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8 loc2all all -- 0.0.0.0/0 0.0.0.0/0 Chain logdrop (7 references) target prot opt source destination LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix `Shorewall:rfc1918:DROP:' DROP all -- 0.0.0.0/0 0.0.0.0/0 Chain net2all (4 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED common all -- 0.0.0.0/0 0.0.0.0/0 LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix `Shorewall:net2all:DROP:' DROP all -- 0.0.0.0/0 0.0.0.0/0 Chain net2dmz (1 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:80 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:25 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:143 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:110 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 net2all all -- 0.0.0.0/0 0.0.0.0/0 Chain net2dns (1 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:53 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:53 net2all all -- 0.0.0.0/0 0.0.0.0/0 Chain net2fw (1 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8 net2all all -- 0.0.0.0/0 0.0.0.0/0 Chain reject (5 references) target prot opt source destination REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 reject-with tcp-reset REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable Chain rfc1918 (2 references) target prot opt source destination RETURN all -- 0.0.0.0/0 255.255.255.255 DROP all -- 169.254.0.0/16 0.0.0.0/0 logdrop all -- 0.0.0.0/8 0.0.0.0/0 logdrop all -- 10.0.0.0/8 0.0.0.0/0 logdrop all -- 127.0.0.0/8 0.0.0.0/0 logdrop all -- 192.0.2.0/24 0.0.0.0/0 logdrop all -- 192.168.0.0/16 0.0.0.0/0 logdrop all -- 172.16.0.0/12 0.0.0.0/0 logdrop all -- 240.0.0.0/4 0.0.0.0/0 Chain shorewall (0 references) target prot opt source destination
