Sorry, a little bit spam here
This is my ipchains rules list
Chain input (policy ACCEPT):
target prot opt source destination ports
ACCEPT all ------ 192.168.1.0/24 anywhere n/a
ACCEPT all ------ anywhere 192.168.1.0/24 n/a
ACCEPT all ------ anywhere anywhere n/a
ACCEPT tcp !y---- anywhere pjc-72-91.tm.net.my any ->
any
DENY all ------ 10.0.0.0/8 pjc-72-91.tm.net.my n/a
DENY all ------ 127.0.0.0/8 pjc-72-91.tm.net.my n/a
DENY all ------ 172.16.0.0/12 pjc-72-91.tm.net.my n/a
DENY all ------ 192.168.0.0/16 pjc-72-91.tm.net.my n/a
DENY tcp ----l- anywhere pjc-72-91.tm.net.my any ->
31337
DENY udp ----l- anywhere pjc-72-91.tm.net.my any ->
31337
DENY tcp ----l- anywhere pjc-72-91.tm.net.my any ->
12345:12346
DENY udp ----l- anywhere pjc-72-91.tm.net.my any ->
12345:12346
DENY tcp ----l- anywhere pjc-72-91.tm.net.my any ->
ingreslock
DENY tcp ----l- anywhere pjc-72-91.tm.net.my any ->
27665
DENY udp ----l- anywhere pjc-72-91.tm.net.my any ->
27444
DENY udp ----l- anywhere pjc-72-91.tm.net.my any ->
31335
DENY all ------ BASE-ADDRESS.MCAST.NET/8 anywhere n/a
DENY all ------ anywhere BASE-ADDRESS.MCAST.NET/8 n/a
ACCEPT tcp ----l- anywhere pjc-72-91.tm.net.my any ->
ftp-data:ftp
ACCEPT tcp ----l- anywhere pjc-72-91.tm.net.my any ->
ssh
ACCEPT tcp ----l- anywhere pjc-72-91.tm.net.my any ->
smtp
ACCEPT tcp ----l- anywhere pjc-72-91.tm.net.my any ->
domain
ACCEPT udp ----l- anywhere pjc-72-91.tm.net.my any ->
domain
ACCEPT tcp ----l- anywhere pjc-72-91.tm.net.my any ->
www
ACCEPT tcp ----l- anywhere pjc-72-91.tm.net.my any ->
pop3
REJECT tcp ----l- anywhere pjc-72-91.tm.net.my any ->
auth
REJECT udp ----l- anywhere pjc-72-91.tm.net.my any ->
113
ACCEPT icmp ------ anywhere pjc-72-91.tm.net.my any ->
any
DENY tcp ------ anywhere pjc-72-91.tm.net.my any ->
1023:65535
ACCEPT udp ------ 161.142.2.0/24 pjc-72-91.tm.net.my domain
-> 1023:65535
ACCEPT udp ----l- !161.142.2.0/24 pjc-72-91.tm.net.my any ->
!1063:1073
ACCEPT udp ----l- !161.142.2.0/24 pjc-72-91.tm.net.my any ->
!61050:61080
ACCEPT udp ----l- !161.142.2.0/24 pjc-72-91.tm.net.my any ->
!65060:65070
ACCEPT udp ----l- !161.142.2.0/24 pjc-72-91.tm.net.my any ->
!64830:64860
ACCEPT udp ----l- !161.142.2.0/24 pjc-72-91.tm.net.my any ->
!64910:64950
REDIRECT udp ------ anywhere pjc-72-91.tm.net.my any ->
1023:65535 => discard
DENY all ----l- anywhere anywhere n/a
Chain forward (policy DENY):
target prot opt source destination ports
MASQ all ------ 192.168.1.0/24 anywhere n/a
Chain output (policy ACCEPT):
target prot opt source destination ports
ACCEPT all ------ 192.168.1.0/24 anywhere n/a
ACCEPT all ------ anywhere 192.168.1.0/24 n/a
ACCEPT all ------ anywhere anywhere n/a
ACCEPT all ------ 127.0.0.0/8 anywhere n/a
- tcp ------ anywhere anywhere any ->
www
- tcp ------ anywhere anywhere any ->
ssh
- tcp ------ anywhere anywhere any ->
telnet
- tcp ------ anywhere anywhere any ->
ftp
- tcp ------ anywhere anywhere any ->
pop3
- tcp ------ anywhere anywhere any ->
smtp
- tcp ------ anywhere anywhere any ->
ftp-data
ACCEPT icmp ------ pjc-72-91.tm.net.my anywhere any ->
any
ACCEPT all ------ anywhere anywhere n/a
Netstat -rn on linux gateway
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
202.188.74.196 0.0.0.0 255.255.255.255 UH 0 0 0 ppp0
192.168.1.111 0.0.0.0 255.255.255.255 UH 0 0 0 eth0
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 202.188.74.196 0.0.0.0 UG 0 0 0 ppp0
Netstat -rn on freeBSD
Routing tables
Internet:
Destination Gateway Flags Netif Expire
default 192.168.1.111 UGSc dc0
127.0.0.1 127.0.0.1 UH lo0
192.168.1 link#1 UC dc0 =>
192.168.1.111 0:80:c6:f8:a7:32 UHLW dc0 1178
thanks
At 01:23 ã 14/02/01 -0800, you wrote:
>On Wed, 14 Feb 2001, Ahmad Fazli Adha Zainol wrote:
>
>> I dont think its got something to do with my ipchains rules (on the Linux
>> gateway), i tried flush all the rules, but its still the same.
>
>If you would, please post a copy of your ipchains rules. Also post a
>copy of your default route. Those would help tremendously in my
>understanding the problem. Thanks in advance...
>
>Dave
>--
>Dave Laird ([EMAIL PROTECTED])
>The Used Kharma Lot
>Web Page: http://www.kharma.net updated 12/28/2000
>
>Dentist, n.:
> A Prestidigitator who, putting metal in one's mouth, pulls
> coins out of one's pockets.
> -- Ambrose Bierce, "The Devil's Dictionary"
>
>
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
>
Ahmad Fazli Adha Zainol
Assistant System Engineer
metSYSTEMS
1005 Block B Level 10 Phileo Damansara 1,
Jalan 16/11, off Jalan Damansara,
46350 Petaling Jaya, Selangor.
MALAYSIA.
Tel: 603-461 8002 Fax: 603-460 9393
URL: http://www.metsys.com.my
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
