One thing I've noticed with my LEAF installation is that the first hop
of a traceroute through it always gives me the "* * *" treatment.
The remaining hops work OK, just the router itself fails to show up.
I've tried opening UDP port 33434 on the local interface. No dice. Any
other ideas? This is really just an annoyance, but I'd like to get it
working right.
I also tried opening a range of ports (33434-33463 for 30 hops), and
found that I couldn't do so unless I specified each port individually.
It seems that Shorewall itself is happy with specifying a range
("shorewall check" comes out OK), but iptables will choke if I actually
try to restart the firewall with a port-range rule.
In other words:
ACCEPT loc fw udp 33434-33463
gives me
Rule "ACCEPT loc fw udp 33434-33463" validated.
when I try shorewall check. If I try shorewall restart:
iptables v1.2.6a: invalid UDP port/service `33434-33463' specified
Try `iptables -h' or 'iptables --help' for more information.
Processing /etc/shorewall/stop ...
Terminated
If I set up rules with comma-separated lists of ports, iptables will
digest it without problems.
In any case, whether I open one port on the local side or thirty, the
first hop of the traceroute fails.
Russ
-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
