[plug] ipchains
Kai
vk6ksj at siwa.com.au
Wed Jun 27 14:30:22 WST 2001
Gavin,
Can you ping the other machines by themselves?
ie say you have three machines, the server and two others, can you ping the
other machines by IP address ?
Can you ping the Linux machine from itself?
/Kai
----- Original Message -----
From: "Gavin Corfield" <gavin at twobluedots.com.au>
To: <plug at plug.linux.org.au>
Sent: Wednesday, June 27, 2001 12:17 PM
Subject: [plug] ipchains
> Hi all,
>
> I'm trying to set up the ipchains for a gateway server. I want to allow
> all traffinc on the loca network. I am trying to enable the server to
> ping all machines on the LAN, however having run:
>
> ipchains -P input DENY
> ipchains -P output DENY
> ipchains -P forward DENY
>
> I am having trouble enabling the server to ping other machines.
>
> What I am having trouble getting my head round is:
>
> When I execute ping host_on_local_net what is actually happening? Is it:
>
> localhost --> packet to kernel sorce 127.0.0.1 --> forward packet to net
> card
>
> in which case I need to forward the packet with something like:
>
> ipchains -A forward -p all -s localhost -d server.localnet -j ACCEPT -i
> lo
>
>
> or:
>
> server.localnet --> netcard
>
> in which case I need to ouptut the packet with something like
>
> ipchains -A output -p all -s server.localnet -d local_net -i eth0
>
>
>
> I hope that's clear thanks in advance
>
> gavin
>
>
More information about the plug
mailing list