At 16:57 1/08/2002, Tim White sent this up the stick:
> > Like I said, the traceroutes are identical, but here is the route infor
>and
> > iptables listing from the machine in question:
>
>Could you also do
>iptables -L -v
>iptables -L -v -t nat
>iptables -L -v -t mangle
>
>These will show more detail as well as the rules in the nat and mangle
>tables too.
bunbun:~# iptables -L -v
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt
in out source destination
1372 121K
ipac_in all -- any any anywhere anywhere
37 2892
ACCEPT all -- lo any anywhere anywhere
0 0
LOG all -- !lo any 127.0.0.0/8 anywhere
LOG level warning
0 0
DROP all -- !lo any 127.0.0.0/8 anywhere
0 0
ACCEPT all -- eth1 any anywhere 255.255.255.255
245 12696
ACCEPT all -- eth1 any INSIDE/24 anywhere
0 0
ACCEPT !tcp -- eth1 any anywhere
BASE-ADDRESS.MCAST.NET/4
0 0
LOG all -- eth0 any INSIDE/24 anywhere
LOG level warning
0 0
DROP all -- eth0 any INSIDE/24 anywhere
0 0
ACCEPT all -- eth0 any anywhere 255.255.255.255
1071 105K
ACCEPT all -- eth0 any anywhere
CPE-144-132-154-148.nsw.bigpond.net.au
0 0
ACCEPT all -- eth0 any anywhere
CPE-144-132-159-255.nsw.bigpond.net.au
34 1088
LOG all -- any any anywhere anywhere
LOG level warning
34 1088
DROP all -- any any anywhere anywhere
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt
in out source destination
0 0
ipac_in all -- any any anywhere anywhere
0 0
ipac_out all -- any any anywhere anywhere
0 0
ACCEPT all -- eth1 eth0 INSIDE/24 anywhere
0 0
ACCEPT all -- eth0 eth1 anywhere INSIDE/24
0 0
LOG all -- any eth0 anywhere INSIDE/24
LOG level warning
0 0
DROP all -- any eth0 anywhere INSIDE/24
0 0
LOG all -- any any anywhere anywhere
LOG level warning
0 0
DROP all -- any any anywhere anywhere
Chain OUTPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt
in out source destination
1579 109K
ipac_out all -- any any anywhere anywhere
37 2892
ACCEPT all -- any lo anywhere anywhere
0 0
ACCEPT all -- any eth1 anywhere 255.255.255.255
305 19544
ACCEPT all -- any eth1 anywhere INSIDE/24
0 0
ACCEPT !tcp -- any eth1 anywhere
BASE-ADDRESS.MCAST.NET/4
0 0
LOG all -- any eth0 anywhere INSIDE/24
LOG level warning
0 0
DROP all -- any eth0 anywhere INSIDE/24
0 0
ACCEPT all -- any eth0 anywhere 255.255.255.255
1226 82709
ACCEPT all -- any eth0 CPE-144-132-154-148.nsw.bigpond.net.au
anywhere
0 0
ACCEPT all -- any eth0 CPE-144-132-159-255.nsw.bigpond.net.au
anywhere
30 4734
LOG all -- any any anywhere anywhere
LOG level warning
30 4734
DROP all -- any any anywhere anywhere
Chain ipac_in (2 references)
pkts bytes target prot opt
in out source destination
89 7930 all -- any any anywhere
anywhere
0 0 tcp -- any any anywhere
anywhere tcp dpt:ftp-data
0 0 tcp -- any any anywhere
anywhere tcp dpt:ftp
52 3896 tcp -- any any anywhere
anywhere tcp dpt:ssh
0 0 tcp -- any any anywhere
anywhere tcp dpt:telnet
0 0 tcp -- any any anywhere
anywhere tcp dpt:smtp
0 0 tcp -- any any anywhere
anywhere tcp dpt:domain
0 0 udp -- any any anywhere
anywhere udp dpt:domain
0 0 tcp -- any any anywhere
anywhere tcp dpt:www
0 0 tcp -- any any anywhere
anywhere tcp dpt:pop3
0 0 tcp -- any any anywhere
anywhere tcp dpts:netbios-ns:netbios-ssn
0 0 udp -- any any anywhere
anywhere udp dpts:netbios-ns:netbios-ssn
0 0 tcp -- any any anywhere
anywhere tcp dpt:https
0 0 tcp -- any any anywhere
anywhere tcp spt:ftp-data
0 0 tcp -- any any anywhere
anywhere tcp spt:ftp
0 0 tcp -- any any anywhere
anywhere tcp spt:ssh
0 0 tcp -- any any anywhere
anywhere tcp spt:telnet
0 0 tcp -- any any anywhere
anywhere tcp spt:smtp
0 0 tcp -- any any anywhere
anywhere tcp spt:domain
12 2706 udp -- any any anywhere
anywhere udp spt:domain
0 0 tcp -- any any anywhere
anywhere tcp spt:www
0 0 tcp -- any any anywhere
anywhere tcp spt:pop3
0 0 tcp -- any any anywhere
anywhere tcp spts:netbios-ns:netbios-ssn
0 0 udp -- any any anywhere
anywhere udp spts:netbios-ns:netbios-ssn
0 0 tcp -- any any anywhere
anywhere tcp spt:https
Chain ipac_out (2 references)
pkts bytes target prot opt
in out source destination
109 6796 all -- any any anywhere
anywhere
0 0 tcp -- any any anywhere
anywhere tcp spt:ftp-data
0 0 tcp -- any any anywhere
anywhere tcp spt:ftp
67 3692 tcp -- any any anywhere
anywhere tcp spt:ssh
0 0 tcp -- any any anywhere
anywhere tcp spt:telnet
0 0 tcp -- any any anywhere
anywhere tcp spt:smtp
0 0 tcp -- any any anywhere
anywhere tcp spt:domain
0 0 udp -- any any anywhere
anywhere udp spt:domain
0 0 tcp -- any any anywhere
anywhere tcp spt:www
0 0 tcp -- any any anywhere
anywhere tcp spt:pop3
0 0 tcp -- any any anywhere
anywhere tcp spts:netbios-ns:netbios-ssn
2 348 udp -- any any anywhere
anywhere udp spts:netbios-ns:netbios-ssn
0 0 tcp -- any any anywhere
anywhere tcp spt:https
0 0 tcp -- any any anywhere
anywhere tcp dpt:ftp-data
0 0 tcp -- any any anywhere
anywhere tcp dpt:ftp
0 0 tcp -- any any anywhere
anywhere tcp dpt:ssh
0 0 tcp -- any any anywhere
anywhere tcp dpt:telnet
0 0 tcp -- any any anywhere
anywhere tcp dpt:smtp
0 0 tcp -- any any anywhere
anywhere tcp dpt:domain
13 950 udp -- any any anywhere
anywhere udp dpt:domain
0 0 tcp -- any any anywhere
anywhere tcp dpt:www
0 0 tcp -- any any anywhere
anywhere tcp dpt:pop3
0 0 tcp -- any any anywhere
anywhere tcp dpts:netbios-ns:netbios-ssn
2 348 udp -- any any anywhere
anywhere udp dpts:netbios-ns:netbios-ssn
0 0 tcp -- any any anywhere
anywhere tcp dpt:https
bunbun:~# iptables -L -v -t nat
Chain PREROUTING (policy ACCEPT 48 packets, 1760 bytes)
pkts bytes target prot opt
in out source destination
Chain POSTROUTING (policy ACCEPT 124 packets, 9256 bytes)
pkts bytes target prot opt
in out source destination
61 3660
MASQUERADE all -- any any INSIDE/24 anywhere
Chain OUTPUT (policy ACCEPT 215 packets, 17650 bytes)
pkts bytes target prot opt
in out source destination
bunbun:~# iptables -L -v -t mangle
Chain PREROUTING (policy ACCEPT 1510 packets, 132K bytes)
pkts bytes target prot opt
in out source destination
Chain INPUT (policy ACCEPT 1510 packets, 132K bytes)
pkts bytes target prot opt
in out source destination
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt
in out source destination
Chain OUTPUT (policy ACCEPT 1728 packets, 119K bytes)
pkts bytes target prot opt
in out source destination
Chain POSTROUTING (policy ACCEPT 1698 packets, 115K bytes)
pkts bytes target prot opt
in out source destination
cheers,
Rob
--
Childrens books that didn't make it:
Your Nightmares Are Real
This is random quote 330 of a collection of 1254
[15200.8 km (8207.8 mi), 262.8 deg](Apparent) Rennerian
--
SLUG - Sydney Linux User's Group - http://slug.org.au/
More Info: http://lists.slug.org.au/listinfo/slug
