Mailing List Archive

   tlug.jp -> Mailing List -> tlug archive -> tlug Mailing List Archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [tlug] Any iptables wizards around?

On 03/25/2011 07:21 PM, Attila Kinali wrote:

On Fri, 25 Mar 2011 19:16:21 +0900
Andreas Kieckens<akieckens@example.com>  wrote:


I tried with the fake ARP daemon but that didn't work either. Neither
did setting the dnat rule manually. Responses arrive now but still
aren't forwarded. I've already set the forward policy to accept but
still no luck. There must be some small setting somewhere that I'm missing.

Then give us a bit more info:

Output of ifconfig

Relevant parts are:
br0       Link encap:Ethernet  HWaddr 18:a9:05:55:73:fe
          inet addr:192.168.2.25  Bcast:192.168.2.255  Mask:255.255.255.0
          inet6 addr: fe80::1aa9:5ff:fe55:73fe/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:6657290 errors:0 dropped:0 overruns:0 frame:0
          TX packets:2591802 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:5447726916 (5.4 GB)  TX bytes:2753670052 (2.7 GB)

eth0      Link encap:Ethernet  HWaddr 18:a9:05:55:73:fe
          UP BROADCAST RUNNING PROMISC MULTICAST  MTU:1500  Metric:1
          RX packets:8769819 errors:0 dropped:0 overruns:0 frame:0
          TX packets:4616109 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:7024171007 (7.0 GB)  TX bytes:2705223746 (2.7 GB)
          Interrupt:19

tap0     Link encap:Ethernet  HWaddr 6e:62:3b:dd:b4:29
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:665 errors:0 dropped:0 overruns:0 frame:0
          TX packets:32833 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:500
          RX bytes:79516 (79.5 KB)  TX bytes:2354763 (2.3 MB)

tap1     Link encap:Ethernet  HWaddr 26:42:1a:f2:05:40
          inet6 addr: fe80::2442:1aff:fef2:540/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:11 errors:0 dropped:0 overruns:0 frame:0
          TX packets:24055 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:500
          RX bytes:798 (798.0 B)  TX bytes:1708317 (1.7 MB)

Output of route -nKernel IP routing table

Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.6.0 0.0.0.0 255.255.255.0 U 0 0 0 br1000
192.168.5.0 0.0.0.0 255.255.255.0 U 0 0 0 br0
192.168.4.0 0.0.0.0 255.255.255.0 U 0 0 0 br0
192.168.2.0 0.0.0.0 255.255.255.0 U 0 0 0 br0
192.168.10.0 0.0.0.0 255.255.255.0 U 0 0 0 br100
192.168.122.0 0.0.0.0 255.255.255.0 U 0 0 0 virbr0
0.0.0.0 192.168.5.1 0.0.0.0 UG 100 0 0 br0
0.0.0.0 192.168.4.1 0.0.0.0 UG 100 0 0 br0
0.0.0.0 192.168.2.1 0.0.0.0 UG 100 0 0 br0


Output of iptables -L -nv
Note: I got rid of the filtering rules to make sure they weren't messing anything up. 

Chain INPUT (policy ACCEPT 2516 packets, 345K bytes)
pkts bytes target prot opt in out source destination 

Chain FORWARD (policy ACCEPT 9631 packets, 2663K bytes)
pkts bytes target prot opt in out source destination 9603 2655K LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 

Chain OUTPUT (policy ACCEPT 1107 packets, 373K bytes)
pkts bytes target prot opt in out source destination 
Output of iptables -L -nv -t nat

Chain INPUT (policy ACCEPT 2516 packets, 345K bytes)
pkts bytes target prot opt in out source destination 

Chain FORWARD (policy ACCEPT 9631 packets, 2663K bytes)
pkts bytes target prot opt in out source destination 9603 2655K LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 

Chain OUTPUT (policy ACCEPT 1107 packets, 373K bytes)
pkts bytes target prot opt in out source destination 

BTW: Please do not top post

			Attila Kinali
Home | Main Index | Thread Index

Home Page Mailing List Linux and Japan TLUG Members Links