Hi
I'm running Dachstein CD 1.0.1 on a 166 pentium with 32 MB RAM and it's been working
great.
I have some VPN tunnels using IpSec and TinyDNS running.
But now I want to add three more internal networks. I added the cards and the modules,
no problem, Eth3 reports transceiver problem but I guess that is because it's not
hooked up to any network.
Then I added this to network.conf:
eth2_IPADDR=192.168.20.254
eth2_MASKLEN=24
eth2_BROADCAST=+
eth2_ROUTES=
eth2_IP_SPOOF=YES
eth2_IP_KRNL_LOGMARTIANS=YES
eth2_IP_SHARED_MEDIA=NO
eth2_BRIDGE=NO
eth2_PROXY_ARP=NO
eth2_FAIRQ=NO
eth3_IPADDR=192.168.30.254
eth3_MASKLEN=24
eth3_BROADCAST=+
eth3_ROUTES=
eth3_IP_SPOOF=YES
eth3_IP_KRNL_LOGMARTIANS=YES
eth3_IP_SHARED_MEDIA=NO
eth3_BRIDGE=NO
eth3_PROXY_ARP=NO
eth3_FAIRQ=NO
eth4_IPADDR=192.168.40.254
eth4_MASKLEN=24
eth4_BROADCAST=+
eth4_ROUTES=
eth4_IP_SPOOF=YES
eth4_IP_KRNL_LOGMARTIANS=YES
eth4_IP_SHARED_MEDIA=NO
eth4_BRIDGE=NO
eth4_PROXY_ARP=NO
eth4_FAIRQ=NO
And:
INTERN_IF="eth1" # Internal Interface
INTERN_NET=192.168.1.0/24 192.168.20.0/24 192.168.30.0/24 192.168.40.0/24
INTERN_IP=192.168.1.254 # IP number of Internal Interface
ButAfter rebooting I cant't access the external net (Internet) from my first local net
on eth1 (192.168.1.0/24).
I can ping 213.199.64.62 wich is my external address but not the GW 213.199.64.1.
>From the firewall I can ping both the GW and the internal net so the problem must be
>that no traffic from the internal net get past the firewall.
What have I done wrong? Please help.
Messages
Feb 26 16:58:22 TILRP syslogd 1.3-3#31.slink1: restart.
Feb 26 16:58:22 TILRP kernel: klogd 1.3-3#31.slink1, log source = /proc/kmsg started.
Feb 26 16:58:22 TILRP kernel: Cannot find map file.
Feb 26 16:58:22 TILRP kernel: Loaded 32 symbols from 19 modules.
Feb 26 16:58:22 TILRP kernel: Linux version 2.2.19-3-LEAF-RAID ([EMAIL PROTECTED])
(gcc version 2.7.2.3) #4 Sat Dec 1 17:27:59 CST 2001
Feb 26 16:58:22 TILRP kernel: BIOS-provided physical RAM map:
Feb 26 16:58:22 TILRP kernel: BIOS-e820: 000a0000 @ 00000000 (usable)
Feb 26 16:58:22 TILRP kernel: BIOS-e820: 01f00000 @ 00100000 (usable)
Feb 26 16:58:22 TILRP kernel: Detected 167047 kHz processor.
Feb 26 16:58:22 TILRP kernel: Console: colour VGA+ 80x25
Feb 26 16:58:22 TILRP kernel: Calibrating delay loop... 333.41 BogoMIPS
Feb 26 16:58:22 TILRP kernel: Memory: 29816k/32768k available (1108k kernel code, 412k
reserved, 640k data, 52k init)
Feb 26 16:58:22 TILRP kernel: Dentry hash table entries: 4096 (order 3, 32k)
Feb 26 16:58:22 TILRP kernel: Buffer cache hash table entries: 32768 (order 5, 128k)
Feb 26 16:58:22 TILRP kernel: Page cache hash table entries: 8192 (order 3, 32k)
Feb 26 16:58:22 TILRP kernel: CPU: Intel Pentium 75 - 200 stepping 0c
Feb 26 16:58:22 TILRP kernel: Checking 386/387 coupling... OK, FPU using exception 16
error reporting.
Feb 26 16:58:22 TILRP kernel: Checking 'hlt' instruction... OK.
Feb 26 16:58:22 TILRP kernel: Intel Pentium with F0 0F bug - workaround enabled.
Feb 26 16:58:22 TILRP kernel: POSIX conformance testing by UNIFIX
Feb 26 16:58:22 TILRP kernel: PCI: PCI BIOS revision 2.10 entry at 0xf0510
Feb 26 16:58:22 TILRP kernel: PCI: Using configuration type 1
Feb 26 16:58:22 TILRP kernel: PCI: Probing PCI hardware
Feb 26 16:58:22 TILRP kernel: Linux NET4.0 for Linux 2.2
Feb 26 16:58:22 TILRP kernel: Based upon Swansea University Computer Society NET3.039
Feb 26 16:58:22 TILRP kernel: NET4: Unix domain sockets 1.0 for Linux NET4.0.
Feb 26 16:58:22 TILRP kernel: NET4: Linux TCP/IP 1.0 for NET4.0
Feb 26 16:58:22 TILRP kernel: IP Protocols: ICMP, UDP, TCP, IGMP
Feb 26 16:58:22 TILRP kernel: TCP: Hash tables configured (ehash 32768 bhash 32768)
Feb 26 16:58:22 TILRP kernel: Linux IP multicast router 0.06 plus PIM-SM
Feb 26 16:58:22 TILRP kernel: klips_info:ipsec_init: KLIPS startup, FreeS/WAN IPSec
version: 1.91
Feb 26 16:58:22 TILRP kernel: early initialization of device ipsec0 is deferred
Feb 26 16:58:22 TILRP kernel: early initialization of device ipsec1 is deferred
Feb 26 16:58:22 TILRP kernel: early initialization of device ipsec2 is deferred
Feb 26 16:58:22 TILRP kernel: early initialization of device ipsec3 is deferred
Feb 26 16:58:22 TILRP kernel: Initializing RT netlink socket
Feb 26 16:58:22 TILRP kernel: Starting kswapd v 1.5
Feb 26 16:58:22 TILRP kernel: Detected PS/2 Mouse Port.
Feb 26 16:58:22 TILRP kernel: Serial driver version 4.27 with MANY_PORTS MULTIPORT
SHARE_IRQ enabled
Feb 26 16:58:22 TILRP kernel: ttyS02 at 0x03e8 (irq = 4) is a 16550A
Feb 26 16:58:22 TILRP kernel: Software Watchdog Timer: 0.05, timer margin: 60 sec
Feb 26 16:58:22 TILRP kernel: Real Time Clock Driver v1.09
Feb 26 16:58:22 TILRP kernel: RAM disk driver initialized: 16 RAM disks of 12288K size
Feb 26 16:58:22 TILRP kernel: PIIX4: IDE controller on PCI bus 00 dev 09
Feb 26 16:58:22 TILRP kernel: PIIX4: not 100%% native mode: will probe irqs later
Feb 26 16:58:22 TILRP kernel: ide0: BM-DMA at 0xe000-0xe007, BIOS settings:
hda:DMA, hdb:pio
Feb 26 16:58:22 TILRP kernel: ide1: BM-DMA at 0xe008-0xe00f, BIOS settings:
hdc:pio, hdd:pio
Feb 26 16:58:22 TILRP kernel: hda: SAMSUNG SCR-2430, ATAPI CDROM drive
Feb 26 16:58:22 TILRP kernel: ide2: ports already in use, skipping probe
Feb 26 16:58:22 TILRP kernel: ide0 at 0x1f0-0x1f7,0x3f6 on irq 14
Feb 26 16:58:22 TILRP kernel: Floppy drive(s): fd0 is 1.44M
Feb 26 16:58:22 TILRP kernel: FDC 0 is a post-1991 82077
Feb 26 16:58:22 TILRP kernel: md driver 0.90.0 MAX_MD_DEVS=256, MAX_REAL=12
Feb 26 16:58:22 TILRP kernel: raid5: measuring checksumming speed
Feb 26 16:58:22 TILRP kernel: 8regs : 170.688 MB/sec
Feb 26 16:58:22 TILRP kernel: 32regs : 130.302 MB/sec
Feb 26 16:58:22 TILRP kernel: using fastest function: 8regs (170.688 MB/sec)
Feb 26 16:58:22 TILRP kernel: NET4: Ethernet Bridge 007 for NET4.0
Feb 26 16:58:22 TILRP kernel: early initialization of device brg0 is deferred
Feb 26 16:58:22 TILRP kernel: brg0: network interface for Ethernet Bridge 007/NET4.0
Feb 26 16:58:22 TILRP kernel: brg0: generated MAC address FE:FD:0C:00:E4:07
Feb 26 16:58:22 TILRP kernel: brg0: attached to bridge instance 0
Feb 26 16:58:22 TILRP kernel: md.c: sizeof(mdp_super_t) = 4096
Feb 26 16:58:22 TILRP kernel: Partition check:
Feb 26 16:58:22 TILRP kernel: RAMDISK: Compressed image found at block 0
Feb 26 16:58:22 TILRP kernel: RAMDISK: Uncompressing root archive: done.
Feb 26 16:58:22 TILRP kernel: RAMDISK: Auto Filesystem - minix: 4096i 12288bk
133fdz(133) 1024zs 2147483647ms
Feb 26 16:58:22 TILRP kernel: autodetecting RAID arrays
Feb 26 16:58:22 TILRP kernel: autorun ...
Feb 26 16:58:22 TILRP kernel: ... autorun DONE.
Feb 26 16:58:22 TILRP kernel: VFS: Mounted root (minix filesystem).
Feb 26 16:58:22 TILRP kernel: RAMDISK: Extracting root archive: done.
Feb 26 16:58:22 TILRP kernel: hda: ATAPI 20X CD-ROM drive, 0kB Cache
Feb 26 16:58:22 TILRP kernel: Uniform CD-ROM driver Revision: 3.11
Feb 26 16:58:22 TILRP kernel: autodetecting RAID arrays
Feb 26 16:58:22 TILRP kernel: autorun ...
Feb 26 16:58:22 TILRP kernel: ... autorun DONE.
Feb 26 16:58:22 TILRP kernel: Freeing unused kernel memory: 52k freed
Feb 26 16:58:22 TILRP kernel: eth0: 8139too FastEthernet driver 0.9.14-2.2 Jeff Garzik
<[EMAIL PROTECTED]>
Feb 26 16:58:22 TILRP kernel: eth0: Linux-2.2 bug reports to Jens David <[EMAIL
PROTECTED]>
Feb 26 16:58:22 TILRP kernel: eth0: RealTek RTL8139 Fast Ethernet board found at
0xc285f000, IRQ 10
Feb 26 16:58:22 TILRP kernel: eth0: Chip is 'RTL-8139A' - MAC address
'00:00:21:d7:3d:f9'.
Feb 26 16:58:22 TILRP kernel: eth1: RealTek RTL8139 Fast Ethernet board found at
0xc2861000, IRQ 11
Feb 26 16:58:22 TILRP kernel: eth1: Chip is 'RTL-8139A' - MAC address
'00:00:21:d7:3e:3c'.
Feb 26 16:58:22 TILRP kernel: fa311.c:v2.00 Netgear FA311 Fast Ethernet Driver
Feb 26 16:58:22 TILRP kernel: eth2: bus=0 func=80 io=0xd400 irq=12 ver=3.2
Feb 26 16:58:22 TILRP kernel: eth2: ethernet addr=00:a0:cc:e0:b5:bf
Feb 26 16:58:22 TILRP kernel: eth3: EtherExpress 16 at 0x320 (IRQ 5, RJ45 connector,
16-bit bus, 32k RAM)
Feb 26 16:58:22 TILRP kernel: ne.c:v1.10 9/23/94 Donald Becker ([EMAIL PROTECTED])
Feb 26 16:58:22 TILRP kernel: NE*000 ethercard probe at 0x300: 00 00 e8 a2 52 c7
Feb 26 16:58:22 TILRP kernel: eth4: NE2000 found at 0x300, using IRQ 3.
Feb 26 16:58:22 TILRP kernel: eth0: Setting half-duplex based on auto-negotiated
partner ability 0000.
Feb 26 16:58:22 TILRP kernel: eth1: Setting 100Mbps full-duplex based on
auto-negotiated partner ability 45e1.
Feb 26 16:58:22 TILRP kernel: eth2: speed=10 duplex=half link=up
Feb 26 16:58:22 TILRP kernel: eth3: TDR reports transceiver problem
Filter
Chain input (policy DENY: 0 packets, 0 bytes):
pkts bytes target prot opt tosa tosx ifname mark outsize source
destination ports
0 0 ACCEPT 51 ------ 0xFF 0x00 *
213.199.64.65 213.199.64.62 n/a
0 0 ACCEPT 50 ------ 0xFF 0x00 *
213.199.64.65 213.199.64.62 n/a
0 0 ACCEPT 51 ------ 0xFF 0x00 *
213.199.64.64 213.199.64.62 n/a
0 0 ACCEPT 50 ------ 0xFF 0x00 *
213.199.64.64 213.199.64.62 n/a
0 0 ACCEPT 51 ------ 0xFF 0x00 *
213.199.64.66 213.199.64.62 n/a
0 0 ACCEPT 50 ------ 0xFF 0x00 *
213.199.64.66 213.199.64.62 n/a
0 0 ACCEPT 51 ------ 0xFF 0x00 *
213.199.64.63 213.199.64.62 n/a
0 0 ACCEPT 50 ------ 0xFF 0x00 *
213.199.64.63 213.199.64.62 n/a
0 0 ACCEPT 51 ------ 0xFF 0x00 *
213.199.64.65 213.199.64.62 n/a
0 0 ACCEPT 50 ------ 0xFF 0x00 *
213.199.64.65 213.199.64.62 n/a
0 0 ACCEPT 51 ------ 0xFF 0x00 *
213.199.64.64 213.199.64.62 n/a
0 0 ACCEPT 50 ------ 0xFF 0x00 *
213.199.64.64 213.199.64.62 n/a
0 0 ACCEPT 51 ------ 0xFF 0x00 *
213.199.64.66 213.199.64.62 n/a
0 0 ACCEPT 50 ------ 0xFF 0x00 *
213.199.64.66 213.199.64.62 n/a
0 0 ACCEPT 51 ------ 0xFF 0x00 *
213.199.64.63 213.199.64.62 n/a
0 0 ACCEPT 50 ------ 0xFF 0x00 *
213.199.64.63 213.199.64.62 n/a
0 0 DENY all ------ 0xFF 0x00 eth0 0.0.0.0
0.0.0.0/0 n/a
0 0 DENY all ------ 0xFF 0x00 eth0
192.168.0.0/16 0.0.0.0/0 n/a
0 0 DENY icmp ----l- 0xFF 0x00 * 0.0.0.0/0
0.0.0.0/0 5 -> *
0 0 DENY icmp ----l- 0xFF 0x00 * 0.0.0.0/0
0.0.0.0/0 13 -> *
0 0 DENY icmp ----l- 0xFF 0x00 * 0.0.0.0/0
0.0.0.0/0 14 -> *
0 0 DENY all ----l- 0xFF 0x00 eth0 0.0.0.0
0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
255.255.255.255 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
127.0.0.0/8 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
224.0.0.0/4 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
10.0.0.0/8 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
172.16.0.0/12 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
192.168.0.0/16 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0 0.0.0.0/8
0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
128.0.0.0/16 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
191.255.0.0/16 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
192.0.0.0/24 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
223.255.255.0/24 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
240.0.0.0/4 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
213.199.64.62 0.0.0.0/0 n/a
0 0 REJECT all ----l- 0xFF 0x00 eth0 0.0.0.0/0
127.0.0.0/8 n/a
0 0 REJECT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 137
0 0 REJECT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 135
129 10206 REJECT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 137
0 0 REJECT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 135
0 0 REJECT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 138:139
44 9427 REJECT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 138
0 0 REJECT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 137:138 -> *
0 0 REJECT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 135 -> *
0 0 REJECT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 137:139 -> *
0 0 REJECT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 135 -> *
0 0 ACCEPT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 25
0 0 REJECT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 113
0 0 ACCEPT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 1024:65535
0 0 REJECT udp ----l- 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 161:162
0 0 ACCEPT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 53
0 0 ACCEPT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 68
16 3856 ACCEPT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 500
0 0 DENY udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 67
0 0 ACCEPT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 1024:65535
0 0 ACCEPT icmp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> *
0 0 ACCEPT ospf ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 n/a
0 0 REJECT udp ----l- 0xFF 0x00 * 0.0.0.0/0
0.0.0.0/0 * -> 161:162
0 0 REJECT udp ----l- 0xFF 0x00 * 0.0.0.0/0
0.0.0.0/0 161:162 -> *
72 5423 ACCEPT all ------ 0xFF 0x00 * 0.0.0.0/0
0.0.0.0/0 n/a
Chain forward (policy DENY: 0 packets, 0 bytes):
pkts bytes target prot opt tosa tosx ifname mark outsize source
destination ports
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.4.0/24 192.168.1.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.1.0/24 192.168.4.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.3.0/24 192.168.1.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.1.0/24 192.168.3.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.5.0/24 192.168.1.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.1.0/24 192.168.5.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.2.0/24 192.168.1.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.1.0/24 192.168.2.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.4.0/24 192.168.1.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.1.0/24 192.168.4.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.3.0/24 192.168.1.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.1.0/24 192.168.3.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.5.0/24 192.168.1.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.1.0/24 192.168.5.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.2.0/24 192.168.1.0/24 n/a
0 0 ACCEPT all ------ 0xFF 0x00 *
192.168.1.0/24 192.168.2.0/24 n/a
0 0 DENY icmp ----l- 0xFF 0x00 * 0.0.0.0/0
0.0.0.0/0 5 -> *
1 129 DENY all ------ 0xFF 0x00 * 0.0.0.0/0
0.0.0.0/0 n/a
Chain output (policy DENY: 0 packets, 0 bytes):
pkts bytes target prot opt tosa tosx ifname mark outsize source
destination ports
62 8425 fairq all ------ 0xFF 0x00 * 0.0.0.0/0
0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0 0.0.0.0
0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
255.255.255.255 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
127.0.0.0/8 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
224.0.0.0/4 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
10.0.0.0/8 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
172.16.0.0/12 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
192.168.0.0/16 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0 0.0.0.0/8
0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
128.0.0.0/16 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
191.255.0.0/16 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
192.0.0.0/24 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
223.255.255.0/24 0.0.0.0/0 n/a
0 0 DENY all ----l- 0xFF 0x00 eth0
240.0.0.0/4 0.0.0.0/0 n/a
0 0 REJECT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 137
0 0 REJECT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 135
0 0 REJECT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 137
0 0 REJECT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 135
0 0 REJECT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 138:139
0 0 REJECT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 * -> 138
0 0 REJECT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 137:138 -> *
0 0 REJECT udp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 135 -> *
0 0 REJECT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 137:139 -> *
0 0 REJECT tcp ------ 0xFF 0x00 eth0 0.0.0.0/0
0.0.0.0/0 135 -> *
62 8425 ACCEPT all ------ 0xFF 0x00 * 0.0.0.0/0
0.0.0.0/0 n/a
Chain fairq (1 references):
pkts bytes target prot opt tosa tosx ifname mark outsize source
destination ports
0 0 RETURN ospf ------ 0xFF 0x00 * 0x1
0.0.0.0/0 0.0.0.0/0 n/a
0 0 RETURN ospf ------ 0xFF 0x00 * 0x1
0.0.0.0/0 0.0.0.0/0 n/a
0 0 RETURN udp ------ 0xFF 0x00 * 0x1
0.0.0.0/0 0.0.0.0/0 * -> 520
0 0 RETURN udp ------ 0xFF 0x00 * 0x1
0.0.0.0/0 0.0.0.0/0 520 -> *
0 0 RETURN tcp ------ 0xFF 0x00 * 0x1
0.0.0.0/0 0.0.0.0/0 * -> 179
0 0 RETURN tcp ------ 0xFF 0x00 * 0x1
0.0.0.0/0 0.0.0.0/0 179 -> *
0 0 RETURN tcp ------ 0xFF 0x00 * 0x1
0.0.0.0/0 0.0.0.0/0 * -> 53
0 0 RETURN tcp ------ 0xFF 0x00 * 0x1
0.0.0.0/0 0.0.0.0/0 53 -> *
2 142 RETURN udp ------ 0xFF 0x00 * 0x1
0.0.0.0/0 0.0.0.0/0 * -> 53
3 372 RETURN udp ------ 0xFF 0x00 * 0x1
0.0.0.0/0 0.0.0.0/0 53 -> *
0 0 RETURN tcp ------ 0xFF 0x00 * 0x2
0.0.0.0/0 0.0.0.0/0 * -> 23
0 0 RETURN tcp ------ 0xFF 0x00 * 0x2
0.0.0.0/0 0.0.0.0/0 23 -> *
0 0 RETURN tcp ------ 0xFF 0x00 * 0x2
0.0.0.0/0 0.0.0.0/0 * -> 22
37 3255 RETURN tcp ------ 0xFF 0x00 * 0x2
0.0.0.0/0 0.0.0.0/0 22 -> *
Route
192.168.5.0/24 via 213.199.64.1 dev ipsec0
192.168.4.0/24 via 213.199.64.1 dev ipsec0
192.168.20.0/24 dev eth2 proto kernel scope link src 192.168.20.254
192.168.3.0/24 via 213.199.64.1 dev ipsec0
192.168.2.0/24 via 213.199.64.1 dev ipsec0
192.168.1.0/24 dev eth1 proto kernel scope link src 192.168.1.254
192.168.30.0/24 dev eth3 proto kernel scope link src 192.168.30.254
213.199.64.0/24 dev eth0 proto kernel scope link src 213.199.64.62
213.199.64.0/24 dev ipsec0 proto kernel scope link src 213.199.64.62
192.168.40.0/24 dev eth4 proto kernel scope link src 192.168.40.254
default via 213.199.64.1 dev eth0
Address
1: lo: <LOOPBACK,UP> mtu 3924 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 brd 127.255.255.255 scope global lo
2: ipsec0: <NOARP,UP> mtu 16260 qdisc pfifo_fast qlen 10
link/ether 00:00:21:d7:3d:f9 brd ff:ff:ff:ff:ff:ff
inet 213.199.64.62/24 brd 213.199.64.255 scope global ipsec0
3: ipsec1: <NOARP> mtu 0 qdisc noop qlen 10
link/ipip
4: ipsec2: <NOARP> mtu 0 qdisc noop qlen 10
link/ipip
5: ipsec3: <NOARP> mtu 0 qdisc noop qlen 10
link/ipip
6: brg0: <BROADCAST,MULTICAST> mtu 1500 qdisc noop
link/ether fe:fd:0c:00:e4:07 brd ff:ff:ff:ff:ff:ff
7: eth0: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100
link/ether 00:00:21:d7:3d:f9 brd ff:ff:ff:ff:ff:ff
inet 213.199.64.62/24 brd 213.199.64.255 scope global eth0
8: eth1: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100
link/ether 00:00:21:d7:3e:3c brd ff:ff:ff:ff:ff:ff
inet 192.168.1.254/24 brd 192.168.1.255 scope global eth1
9: eth2: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100
link/ether 00:a0:cc:e0:b5:bf brd ff:ff:ff:ff:ff:ff
inet 192.168.20.254/24 brd 192.168.20.255 scope global eth2
10: eth3: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100
link/ether 00:aa:00:35:8d:57 brd ff:ff:ff:ff:ff:ff
inet 192.168.30.254/24 brd 192.168.30.255 scope global eth3
11: eth4: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100
link/ether 00:00:e8:a2:52:c7 brd ff:ff:ff:ff:ff:ff
inet 192.168.40.254/24 brd 192.168.40.255 scope global eth4
--
-------------------------------------------------------
This SF.net email is sponsored by: Scholarships for Techies!
Can't afford IT training? All 2003 ictp students receive scholarships.
Get hands-on training in Microsoft, Cisco, Sun, Linux/UNIX, and more.
www.ictp.com/training/sourceforge.asp
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
