[plug] Routing issue

Paul Dean paul at canningcollege.wa.edu.au
Tue Jul 10 10:02:46 WST 2001


hya,

At 08:52 AM 10/07/2001 +0800, you wrote:


>I seem to be having a routing problem I think is in the way ipchains is set
>the following is the our forward (DENY) policy.
>Seems one of our networks that connects tot he RH7.1 server cannot receive
>email nor ping the server.
>
>/sbin/ipchains -P input DENY

have you got any input chains??
your POLICY stats to DENY all input....

>/sbin/ipchains -P forward DENY
>/sbin/ipchains -P output ACCEPT
>
>echo 1 > /proc/sys/net/ipv4/ip_forward
>
>/sbin/ipchains -A forward -s $RMT_NET/24 -d $PRI_NET/8 -j ACCEPT
>/sbin/ipchains -A forward -s $PRI_NET/24 -d $RMT_NET/24 -j ACCEPT
>
>/sbin/ipchains -A forward -s $RMT2_NET/24 -d 0.0.0.0/0 -j MASQ
>/sbin/ipchains -A forward -s $PRI_NET/8 -d 0.0.0.0/0 -j MASQ
>/sbin/ipchains -A forward -s $RMT_NET/24 -d 0.0.0.0/0 -j MASQ
>/sbin/ipchains -A forward -s $RMT1_NET/24 -d 0.0.0.0/0 -j MASQ
>/sbin/ipchains -A forward -s $RMT3_NET/24 -d 0.0.0.0/0 -j MASQ



>netstat -r
>Destination     Gateway         Genmask         Flags   MSS Window  irtt Iface
>gogo-01.iinet.n *               255.255.255.255 UH       40 0          0 ppp0
>192.168.1.51    *               255.255.255.255 UH       40 0          0 ppp1
>192.168.1.53    *               255.255.255.255 UH       40 0          0 ppp2
>10.76.33.0      *               255.255.255.0   U        40 0          0 eth0
>127.0.0.0       *               255.0.0.0       U        40 0          0 lo
>default         gogo-01.iinet.n 0.0.0.0         UG       40 0          0 ppp0
>
>Jon L. Miller, MCNE
>Director/Sr Systems Consultant
>MMT Networks Pty Ltd
>http://www.mmtnetworks.com.au
>
>"I don't know the key to success, but the key to failure
>  is trying to please everybody." -Bill Cosby


Regards

Paul Dean
IT Support Officer
Canning College
Computing Centre
Ph: 9350 5430
Mob: 0408 902 206
paul at canningcollege.wa.edu.au




More information about the plug mailing list