ca sa poti sa faci traceroute tre' sa accepti si porturile udp de la 33434 la 33600 cam pe astea le foloseste traceroute. pe udp.
just me. ----- Original Message ----- From: "Costi" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, February 05, 2003 6:48 PM Subject: [rlug] nu mai merge traceroute > Pina acum la reteaua locala nu aveam restrictii. Am mai bagat niste > reguli, si acum nu mai merge calumea traceroute: > > traceroute to www.google.com (216.239.51.101), 30 hops max, 38 byte packets > 1 server (192.168.0.254) 0.347 ms 0.276 ms 0.241 ms > 2 server (192.168.0.254) 0.286 ms 0.281 ms 0.255 ms > > Uitati ce am facut: > > Pentru cei care nu fac dc++ si sint oameni de inteles: > for a in $IP_TRUSTED > do > $IPTABLES -A FORWARD -i $LAN_IFACE -s $a -j ACCEPT > done > > > > Pentru bulangii cu care nu te intelegi: > > for a in $IP_UNTRUSTED > do > > # > # web traffic > # > > $IPTABLES -A FORWARD -i $LAN_IFACE -p tcp -s $a --dport 80 -j ACCEPT > > # > # ICMP rules > # > > $IPTABLES -A FORWARD -i $LAN_IFACE -p ICMP -s $a -j ACCEPT > > # > # All traffic to ports less than 1024 > # > > $IPTABLES -A FORWARD -i $LAN_IFACE -p tcp -s $a --dport :1024\ > -j ACCEPT > > for d in $DEST_PORTS_ALLOWED #jabber, 8080, etc. > do > $IPTABLES -A FORWARD -i $LAN_IFACE -p tcp -s $a --dport $d \ > -j ACCEPT > done > > done > > > Cred ca traceroute foloseste ICMP. Ping merge, traceroute de ce nu merge? > > -- > Ce nu te omoara, ti-o intareste. > > --- > Pentru dezabonare, trimiteti mail la > [EMAIL PROTECTED] cu subiectul 'unsubscribe rlug'. > REGULI, arhive si alte informatii: http://www.lug.ro/mlist/ > --- Pentru dezabonare, trimiteti mail la [EMAIL PROTECTED] cu subiectul 'unsubscribe rlug'. REGULI, arhive si alte informatii: http://www.lug.ro/mlist/
