This raises a good question. What ports need to be open to allow a
ping or traceroute to an external host. I have Read the Firewall-HOWTO and
can't fing this inside of the HOWTO
I am using a custom kernel 2.2.13 that has all the proper options IP
MASQ statements enabled and I am starting the firewall with a IPCHAINS for
deny everything rule allowing all conections to the outside from localhost
or from anywhere within the masquraded LAN
> -----Original Message-----
> From: Alex Pope [SMTP:[EMAIL PROTECTED]]
> Sent: Thursday, December 02, 1999 9:23 PM
> To: Marc Mutz
> Cc: [EMAIL PROTECTED]
> Subject: Re: ping: sendto: Operation not permitted
>
> On Thu, 2 Dec 1999, Marc Mutz wrote:
>
> > Hi out there!
> >
> > This is a message I get now and then, when installing networks. But I
> > have yet to find out what exactly it means and how to proceed to a
> > working ethernet connection from there on.
> > I now came over this one when installing a network card in my box at
> > home. I set up the if, the routes (are done by the kernel itself
> > nowadays) and try to ping the other box (a laptop). I get:
> >
> > mmutz@adam:~ > ping 192.168.0.67
> > PING 192.168.0.67 (192.168.0.67): 56 data bytes
> > ping: sendto: Operation not permitted
> > ping: wrote 192.168.0.67 64 chars, ret=-1
> > ping: sendto: Operation not permitted
> > ping: wrote 192.168.0.67 64 chars, ret=-1
>
> 1. make sure your ping is setuid root.
> 2.(more likely) make sure you don't accidentally have firewall rules
> preventing pings. check the output of ipchains -L or ipfwadm -Iln, ipfwadm
> -Oln, ipfwadm -Fln.
