Re: [PacketFence-users] Ping client from outside vlan iptables problem

Wed, 12 Feb 2014 12:56:37 -0800 

I don't use inline mode, but am under the impression that it works
using NAT.  If I am correct, your initial observation is exactly
what should be expected in a healthy NAT configuration!

This PF FAQ entry may be of interest:

http://www.packetfence.org/support/faqs/article/how-can-we-route-instead-of-nat-through-packetfence-in-inline-enforcement.html

-Arthur

-------------------------------------------------------------------------
Arthur Emerson III                 Email:      
[email protected]<mailto:[email protected]>
Network Administrator              InterNIC:   AE81
Mount Saint Mary College           MaBell:     (845) 561-0800 Ext. 3109
330 Powell Ave.                    Fax:        (845) 562-6762
Newburgh, NY  12550                SneakerNet: Aquinas Hall Room 11


On Feb 12, 2014, at 3:31 PM, David Rice 
<[email protected]<mailto:[email protected]>> wrote:

So, it looks like the issue I am having is that traffic in iptables isn't 
forwarding the outside traffic to the registered devices insides of the 
packetfence vlan.  I was able to allow all outside traffic to forward 
regardless of whether the device was registered or not, but allowing it to 
forward only to registered devices has been a bit tricky.

Is there anyone that has any ideas?


On Tue, Feb 11, 2014 at 3:55 PM, David Rice 
<[email protected]<mailto:[email protected]>> wrote:
Hello,
I recently ran into an issue.  I would like to be able to ping to devices in a 
PacketFence (inline mode) vlan.  Something in the iptables rules is preventing 
me from doing this.  I am able to ping from the device inside the vlan out, but 
I can't ping from outside the vlan back in.  When I stop iptables rules it is 
able to complete the ping, so it is something specific with iptables, but I 
don't know what.

any help would be appreciated.

--
David Rice



------------------------------------------------------------------------------
Android apps run on BlackBerry 10
Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
Now with support for Jelly Bean, Bluetooth, Mapview and more.
Get your Android app in front of a whole new audience.  Start now.
http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users

Reply via email to