Mailing List Archive
Support open source code!
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
iptables - bah!!
- To: "'uuasc@example.com'" <uuasc@example.com>, "'tlug@example.com'" <tlug@example.com>
- Subject: iptables - bah!!
- From: Scott Stone <SStone@example.com>
- Date: Wed, 16 May 2001 11:20:28 -0700
- Content-Type: text/plain;charset="iso-8859-1"
- Reply-To: tlug@example.com
- Resent-From: tlug@example.com
- Resent-Message-ID: <E5q_ZC.A.dU.DYsA7@example.com>
- Resent-Sender: tlug-request@example.com
ok, so I have 5 IPs, and I have some DNAT stuff going on so that anything coming in to 64.175.231.203, for example, gets sent to 192.168.81.5, my webserver. However, on the firewall box, if I do: tcpdump -i eth0 host 64.175.231.203 (eth0 is the outside interface), I dont see any of the packets that come IN, only the packets that go OUT. It's like anything in the nat table bypasses whatever kernel resource that allows tcpdump to see packets. Better yet, the "-j LOG" target isn't supported in the NAT table! what am I to do about this? ----------------------------------------------------- Scott M. Stone <sstone@example.com> Senior Technical Consultant - UNIX and Networking Taos, the Sysadmin Company - Santa Clara, CA
- Prev by Date: RE: Source of virus.
- Next by Date: RE: Cisco 2611 as a firewall?
- Prev by thread: RE: Source of virus.
- Next by thread: CmdrTaco, Hemos
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |