[leaf-user] interal network card not responding properly

ray Tue, 07 Feb 2006 12:42:06 -0800

Hello,

right now im just trying to get a a simple setup going, then buildon that. I have my 2 network cards in there, the drivers are loadedsuccessfully, and i was able to verify they both worked. I did this bytrying them both out as eth0, and I was able to successly ping thefirewall from another computer as well as ping from the firewall to anoutside location with each network card. now the problem that I amhaving is that for some reason my internal network card, eth1, is notsending out any traffic like it is supposed to be. to be more specificno traffic is being sent at all.I have a hub setup and this is what im experiencing with that.

1. When i plug eth1 into the uplink port like it is supposed to be, theport light is off and there is no traffic on that port. all networkcard lights are off.

2. When i plug eth1 into any of the other ports that the recevingcomputers are suppoed to plug into, the port lights up and the lights onthe network card itself start flashing like there is traffic going on.

it almost seems as if eth1 is acting like a reciever, instead ofdistributing IP's like it is supposed to. can anyone please help me outwith this problem. ive spent the past few days on this and i reallyneed to get this figured out. I will post the output to some commandsbelow.


Thanks
-Ray


UNAME
Linux firewall 2.4.20 #1 Sun May 11 18:53:34 CEST 2003 i686 unknown

ADDR SHOW
1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue
   link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
   inet 127.0.0.1/8 brd 127.255.255.255 scope host lo
2: dummy0: <BROADCAST,NOARP> mtu 1500 qdisc noop
   link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff
3: eth0: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100
   link/ether 00:10:5a:18:ff:c3 brd ff:ff:ff:ff:ff:ff
   inet 138.23.75.45/24 brd 138.23.75.255 scope global eth0
4: eth1: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 100
   link/ether 00:a0:cc:67:d6:2d brd ff:ff:ff:ff:ff:ff
   inet 192.168.1.1/24 brd 192.168.1.255 scope global eth1

SHOW ROUTE
192.168.1.0/24 dev eth1  proto kernel  scope link  src 192.168.1.1
138.23.75.0/24 dev eth0  proto kernel  scope link  src 138.23.75.45
default via 138.23.75.1 dev eth0

MESSAGE LOG
Feb  7 11:51:09 firewall syslogd 1.3-3#31.slink1: restart.

Feb 7 11:51:09 firewall kernel: klogd 1.3-3#31.slink1, log source =/proc/kmsg started.

Feb  7 11:51:09 firewall kernel: No module symbols loaded.
Feb  7 11:51:09 firewall kernel: BIOS-provided physical RAM map:
Feb  7 11:51:09 firewall kernel: 128MB LOWMEM available.
Feb  7 11:51:09 firewall kernel: Initializing CPU#0

Feb 7 11:51:09 firewall kernel: Memory: 127360k/131072k available (948kkernel code, 3312k reserved, -1176k data, 64k init, 0k highmem)Feb 7 11:51:09 firewall kernel: Dentry cache hash table entries: 16384(order: 5, 131072 bytes)Feb 7 11:51:09 firewall kernel: Inode cache hash table entries: 8192(order: 4, 65536 bytes)

Feb  7 11:51:09 firewall kernel: CPU: L1 I cache: 16K, L1 D cache: 16K
Feb  7 11:51:09 firewall kernel: CPU: L2 cache: 512K

Feb 7 11:51:09 firewall kernel: Enabling fast FPU save and restore...done.

Feb  7 11:51:09 firewall kernel: Checking 'hlt' instruction... OK.

Feb 7 11:51:09 firewall kernel: PCI: PCI BIOS revision 2.10 entry at0xfd9a3, last bus=1

Feb  7 11:51:09 firewall kernel: PCI: Using configuration type 1
Feb  7 11:51:09 firewall kernel: PCI: Probing PCI hardware

Feb 7 11:51:09 firewall kernel: PCI: Using IRQ router PIIX [8086/7110]at 00:07.0

Feb  7 11:51:09 firewall kernel: Limiting direct PCI/PCI transfers.
Feb  7 11:51:09 firewall kernel: Linux NET4.0 for Linux 2.4

Feb 7 11:51:09 firewall kernel: Based upon Swansea University ComputerSociety NET3.039Feb 7 11:51:09 firewall kernel: Serial driver version 5.05c(2001-07-08) with MANY_PORTS SHARE_IRQ DETECT_IRQ SERIAL_PCI enabled

Feb  7 11:51:09 firewall kernel: ttyS00 at 0x03f8 (irq = 4) is a 16550A
Feb  7 11:51:09 firewall kernel: ttyS01 at 0x02f8 (irq = 3) is a 16550A
Feb  7 11:51:09 firewall kernel: Real Time Clock Driver v1.10e

Feb 7 11:51:09 firewall kernel: Software Watchdog Timer: 0.05, timermargin: 60 sec

Feb  7 11:51:09 firewall kernel: Floppy drive(s): fd0 is 1.44M
Feb  7 11:51:09 firewall kernel: FDC 0 is a post-1991 82077
Feb  7 11:51:09 firewall kernel: NET4: Linux TCP/IP 1.0 for NET4.0
Feb  7 11:51:09 firewall kernel: IP Protocols: ICMP, UDP, TCP, IGMP

Feb 7 11:51:09 firewall kernel: IP: routing cache hash table of 1024buckets, 8KbytesFeb 7 11:51:09 firewall kernel: TCP: Hash tables configured(established 8192 bind 8192)Feb 7 11:51:09 firewall kernel: NET4: Unix domain sockets 1.0/SMP forLinux NET4.0.

Feb  7 11:51:09 firewall kernel: RAMDISK: Compressed image found at block 0
Feb  7 11:51:09 firewall kernel: Freeing initrd memory: 401k freed
Feb  7 11:51:09 firewall kernel: Freeing unused kernel memory: 64k freed

Feb 7 11:51:09 firewall kernel: pci-scan.c:v1.11 8/31/2002 DonaldBecker <[EMAIL PROTECTED]> http://www.scyld.com/linux/drivers.htmlFeb 7 11:51:09 firewall kernel: 3c59x.c:v0.99Xf 11/17/2002 DonaldBecker, [EMAIL PROTECTED]

Feb  7 11:51:09 firewall kernel:   http://www.scyld.com/network/vortex.html

Feb 7 11:51:09 firewall kernel: eth0: 3Com 3c905B Cyclone 100baseTx at0x1400, 00:10:5a:18:ff:c3, IRQ 9Feb 7 11:51:09 firewall kernel: 8K buffer 5:3 Rx:Tx split,autoselect/Autonegotiate interface.Feb 7 11:51:09 firewall kernel: MII transceiver found at address 24,status 786d.Feb 7 11:51:09 firewall kernel: MII transceiver found at address 0,status 786d.Feb 7 11:51:09 firewall kernel: Using bus-master transmits andwhole-frame receives.Feb 7 11:51:09 firewall kernel: tulip.c:v0.95f 11/17/2002 Written byDonald Becker <[EMAIL PROTECTED]>

Feb  7 11:51:09 firewall kernel:   http://www.scyld.com/network/tulip.html

Feb 7 11:51:09 firewall kernel: eth1: Lite-On LC82C115 PNIC-II rev 37at 0xc8823400, 00:A0:CC:67:D6:2D, IRQ 9.

Feb  7 11:51:13 firewall root: Shorewall Started
Feb  7 11:53:38 firewall root: Shorewall Restarted
Feb  7 11:56:32 firewall root: Shorewall Restarted
Feb  7 11:56:49 firewall root: Shorewall Restarted
Feb  7 12:01:32 firewall root: Shorewall Restarted

IP tables (Masquerade)
Chain PREROUTING (policy ACCEPT 2474 packets, 279K bytes)

pkts bytes target prot opt in out sourcedestination

Chain POSTROUTING (policy ACCEPT 35 packets, 2500 bytes)

pkts bytes target prot opt in out sourcedestination10 752 eth0_masq all -- * eth0 0.0.0.0/00.0.0.0/0

Chain OUTPUT (policy ACCEPT 192 packets, 11920 bytes)

pkts bytes target prot opt in out sourcedestination

Chain eth0_masq (1 references)

pkts bytes target prot opt in out sourcedestination0 0 MASQUERADE all -- * * 192.168.1.0/240.0.0.0/0


SHOREWALL STATUS
[H[JShorewall-1.4.2 Status at firewall - Tue Feb  7 12:15:09 UTC 2006

Counters reset Tue Feb  7 12:01:32 UTC 2006

Chain INPUT (policy DROP 0 packets, 0 bytes)

pkts bytes target prot opt in out sourcedestination0 0 DROP !icmp -- * * 0.0.0.0/00.0.0.0/0 state INVALID4 336 ACCEPT all -- lo * 0.0.0.0/00.0.0.0/037 5033 eth0_in all -- eth0 * 0.0.0.0/00.0.0.0/00 0 eth1_in all -- eth1 * 0.0.0.0/00.0.0.0/00 0 common all -- * * 0.0.0.0/00.0.0.0/00 0 ULOG all -- * * 0.0.0.0/00.0.0.0/0 ULOG copy_range 0 nlgroup 1 prefix`Shorewall:INPUT:REJECT:' queue_threshold 10 0 reject all -- * * 0.0.0.0/00.0.0.0/0

Chain FORWARD (policy DROP 0 packets, 0 bytes)

pkts bytes target prot opt in out sourcedestination0 0 DROP !icmp -- * * 0.0.0.0/00.0.0.0/0 state INVALID0 0 eth0_fwd all -- eth0 * 0.0.0.0/00.0.0.0/00 0 eth1_fwd all -- eth1 * 0.0.0.0/00.0.0.0/00 0 common all -- * * 0.0.0.0/00.0.0.0/00 0 ULOG all -- * * 0.0.0.0/00.0.0.0/0 ULOG copy_range 0 nlgroup 1 prefix`Shorewall:FORWARD:REJECT:' queue_threshold 10 0 reject all -- * * 0.0.0.0/00.0.0.0/0

Chain OUTPUT (policy DROP 0 packets, 0 bytes)

pkts bytes target prot opt in out sourcedestination0 0 DROP !icmp -- * * 0.0.0.0/00.0.0.0/0 state INVALID4 336 ACCEPT all -- * lo 0.0.0.0/00.0.0.0/010 752 fw2net all -- * eth0 0.0.0.0/00.0.0.0/00 0 fw2loc all -- * eth1 0.0.0.0/00.0.0.0/00 0 common all -- * * 0.0.0.0/00.0.0.0/00 0 ULOG all -- * * 0.0.0.0/00.0.0.0/0 ULOG copy_range 0 nlgroup 1 prefix`Shorewall:OUTPUT:REJECT:' queue_threshold 10 0 reject all -- * * 0.0.0.0/00.0.0.0/0

Chain all2all (3 references)

pkts bytes target prot opt in out sourcedestination0 0 ACCEPT all -- * * 0.0.0.0/00.0.0.0/0 state RELATED,ESTABLISHED0 0 newnotsyn tcp -- * * 0.0.0.0/00.0.0.0/0 state NEW tcp flags:!0x16/0x020 0 common all -- * * 0.0.0.0/00.0.0.0/00 0 ULOG all -- * * 0.0.0.0/00.0.0.0/0 ULOG copy_range 0 nlgroup 1 prefix`Shorewall:all2all:REJECT:' queue_threshold 10 0 reject all -- * * 0.0.0.0/00.0.0.0/0

Chain common (5 references)

pkts bytes target prot opt in out sourcedestination0 0 icmpdef icmp -- * * 0.0.0.0/00.0.0.0/018 1883 reject udp -- * * 0.0.0.0/00.0.0.0/0 udp dpts:137:1390 0 reject udp -- * * 0.0.0.0/00.0.0.0/0 udp dpt:4450 0 reject tcp -- * * 0.0.0.0/00.0.0.0/0 tcp dpt:1390 0 reject tcp -- * * 0.0.0.0/00.0.0.0/0 tcp dpt:4450 0 reject tcp -- * * 0.0.0.0/00.0.0.0/0 tcp dpt:1350 0 DROP udp -- * * 0.0.0.0/00.0.0.0/0 udp dpt:19009 1562 DROP all -- * * 0.0.0.0/0255.255.255.2550 0 DROP all -- * * 0.0.0.0/0224.0.0.0/40 0 reject tcp -- * * 0.0.0.0/00.0.0.0/0 tcp dpt:1130 0 DROP udp -- * * 0.0.0.0/00.0.0.0/0 udp spt:53 state NEW0 0 DROP all -- * * 0.0.0.0/0138.23.75.2550 0 DROP all -- * * 0.0.0.0/0192.168.1.255

Chain dynamic (4 references)

pkts bytes target prot opt in out sourcedestination

Chain eth0_fwd (1 references)

pkts bytes target prot opt in out sourcedestination0 0 dynamic all -- * * 0.0.0.0/00.0.0.0/00 0 rfc1918 all -- * * 0.0.0.0/00.0.0.0/0 state NEW0 0 net2all all -- * eth1 0.0.0.0/00.0.0.0/0

Chain eth0_in (1 references)

pkts bytes target prot opt in out sourcedestination37 5033 dynamic all -- * * 0.0.0.0/00.0.0.0/027 3445 rfc1918 all -- * * 0.0.0.0/00.0.0.0/0 state NEW37 5033 net2fw all -- * * 0.0.0.0/00.0.0.0/0

Chain eth1_fwd (1 references)

pkts bytes target prot opt in out sourcedestination0 0 dynamic all -- * * 0.0.0.0/00.0.0.0/00 0 loc2net all -- * eth0 0.0.0.0/00.0.0.0/0

Chain eth1_in (1 references)

pkts bytes target prot opt in out sourcedestination0 0 dynamic all -- * * 0.0.0.0/00.0.0.0/00 0 loc2fw all -- * * 0.0.0.0/00.0.0.0/0

Chain fw2loc (1 references)

Chain fw2net (1 references)

pkts bytes target prot opt in out sourcedestination0 0 ACCEPT all -- * * 0.0.0.0/00.0.0.0/0 state RELATED,ESTABLISHED0 0 newnotsyn tcp -- * * 0.0.0.0/00.0.0.0/0 state NEW tcp flags:!0x16/0x020 0 ACCEPT tcp -- * * 0.0.0.0/00.0.0.0/0 state NEW tcp dpt:534 248 ACCEPT udp -- * * 0.0.0.0/00.0.0.0/0 state NEW udp dpt:536 504 ACCEPT icmp -- * * 0.0.0.0/00.0.0.0/0 icmp type 80 0 all2all all -- * * 0.0.0.0/00.0.0.0/0

Chain icmpdef (1 references)

pkts bytes target prot opt in out sourcedestination

Chain loc2fw (1 references)

pkts bytes target prot opt in out sourcedestination0 0 ACCEPT all -- * * 0.0.0.0/00.0.0.0/0 state RELATED,ESTABLISHED0 0 newnotsyn tcp -- * * 0.0.0.0/00.0.0.0/0 state NEW tcp flags:!0x16/0x020 0 ACCEPT tcp -- * * 0.0.0.0/00.0.0.0/0 state NEW tcp dpt:220 0 ACCEPT icmp -- * * 0.0.0.0/00.0.0.0/0 icmp type 80 0 ACCEPT udp -- * * 0.0.0.0/00.0.0.0/0 state NEW udp dpt:530 0 ACCEPT tcp -- * * 0.0.0.0/00.0.0.0/0 state NEW tcp dpt:800 0 all2all all -- * * 0.0.0.0/00.0.0.0/0

Chain loc2net (1 references)

Chain logdrop (30 references)

pkts bytes target prot opt in out sourcedestination0 0 ULOG all -- * * 0.0.0.0/00.0.0.0/0 ULOG copy_range 0 nlgroup 1 prefix`Shorewall:rfc1918:DROP:' queue_threshold 10 0 DROP all -- * * 0.0.0.0/00.0.0.0/0

Chain net2all (2 references)

pkts bytes target prot opt in out sourcedestination0 0 ACCEPT all -- * * 0.0.0.0/00.0.0.0/0 state RELATED,ESTABLISHED0 0 newnotsyn tcp -- * * 0.0.0.0/00.0.0.0/0 state NEW tcp flags:!0x16/0x0227 3445 common all -- * * 0.0.0.0/00.0.0.0/00 0 ULOG all -- * * 0.0.0.0/00.0.0.0/0 ULOG copy_range 0 nlgroup 1 prefix`Shorewall:net2all:DROP:' queue_threshold 10 0 DROP all -- * * 0.0.0.0/00.0.0.0/0

Chain net2fw (1 references)

pkts bytes target prot opt in out sourcedestination10 1588 ACCEPT all -- * * 0.0.0.0/00.0.0.0/0 state RELATED,ESTABLISHED0 0 newnotsyn tcp -- * * 0.0.0.0/00.0.0.0/0 state NEW tcp flags:!0x16/0x020 0 ACCEPT icmp -- * * 0.0.0.0/00.0.0.0/0 icmp type 827 3445 net2all all -- * * 0.0.0.0/00.0.0.0/0

Chain newnotsyn (7 references)

pkts bytes target prot opt in out sourcedestination0 0 DROP all -- * * 0.0.0.0/00.0.0.0/0

Chain reject (10 references)

pkts bytes target prot opt in out sourcedestination0 0 REJECT tcp -- * * 0.0.0.0/00.0.0.0/0 reject-with tcp-reset18 1883 REJECT all -- * * 0.0.0.0/00.0.0.0/0 reject-with icmp-port-unreachable


Chain rfc1918 (2 references)

pkts bytes target prot opt in out sourcedestination0 0 RETURN all -- * * 255.255.255.2550.0.0.0/00 0 RETURN all -- * * 169.254.0.0/160.0.0.0/00 0 logdrop all -- * * 172.16.0.0/120.0.0.0/00 0 logdrop all -- * * 192.0.2.0/240.0.0.0/00 0 logdrop all -- * * 192.168.0.0/160.0.0.0/00 0 logdrop all -- * * 0.0.0.0/70.0.0.0/00 0 logdrop all -- * * 2.0.0.0/80.0.0.0/00 0 logdrop all -- * * 5.0.0.0/80.0.0.0/00 0 logdrop all -- * * 7.0.0.0/80.0.0.0/00 0 logdrop all -- * * 10.0.0.0/80.0.0.0/00 0 logdrop all -- * * 23.0.0.0/80.0.0.0/00 0 logdrop all -- * * 27.0.0.0/80.0.0.0/00 0 logdrop all -- * * 31.0.0.0/80.0.0.0/00 0 logdrop all -- * * 36.0.0.0/70.0.0.0/00 0 logdrop all -- * * 39.0.0.0/80.0.0.0/00 0 logdrop all -- * * 41.0.0.0/80.0.0.0/00 0 logdrop all -- * * 42.0.0.0/80.0.0.0/00 0 logdrop all -- * * 49.0.0.0/80.0.0.0/00 0 logdrop all -- * * 50.0.0.0/80.0.0.0/00 0 logdrop all -- * * 58.0.0.0/70.0.0.0/00 0 logdrop all -- * * 60.0.0.0/80.0.0.0/00 0 logdrop all -- * * 70.0.0.0/70.0.0.0/00 0 logdrop all -- * * 72.0.0.0/50.0.0.0/00 0 logdrop all -- * * 83.0.0.0/80.0.0.0/00 0 logdrop all -- * * 84.0.0.0/60.0.0.0/00 0 logdrop all -- * * 88.0.0.0/50.0.0.0/00 0 logdrop all -- * * 96.0.0.0/30.0.0.0/00 0 logdrop all -- * * 127.0.0.0/80.0.0.0/00 0 logdrop all -- * * 197.0.0.0/80.0.0.0/00 0 logdrop all -- * * 198.18.0.0/150.0.0.0/00 0 logdrop all -- * * 201.0.0.0/80.0.0.0/00 0 logdrop all -- * * 240.0.0.0/40.0.0.0/0

Chain shorewall (0 references)

pkts bytes target prot opt in out sourcedestinationFeb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=198.41.0.10 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=59066 DF PROTO=UDPSPT=3420 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=198.32.64.12 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=38406 DF PROTO=UDPSPT=7976 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=192.5.5.241 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=34255 DF PROTO=UDPSPT=25596 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=202.12.27.33 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=45206 DF PROTO=UDPSPT=30963 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=192.36.148.17 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=59483 DF PROTO=UDPSPT=18464 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=128.8.10.90 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=52124 DF PROTO=UDPSPT=43443 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=128.63.2.53 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=45648 DF PROTO=UDPSPT=18455 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=192.112.36.4 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=40862 DF PROTO=UDPSPT=14202 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=193.0.14.129 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=40873 DF PROTO=UDPSPT=43008 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=192.203.230.10 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=59630 DF PROTO=UDPSPT=23530 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=198.41.0.4 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=60153 DF PROTO=UDPSPT=4116 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=192.33.4.12 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=35480 DF PROTO=UDPSPT=15657 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=128.9.0.107 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=34144 DF PROTO=UDPSPT=3918 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=198.41.0.10 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=41108 DF PROTO=UDPSPT=47595 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=198.32.64.12 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=57489 DF PROTO=UDPSPT=21574 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=192.5.5.241 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=60928 DF PROTO=UDPSPT=64252 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=202.12.27.33 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=33183 DF PROTO=UDPSPT=61832 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=192.36.148.17 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=48678 DF PROTO=UDPSPT=56654 DPT=53 LEN=40Feb 7 11:52:34 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=128.8.10.90 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=43963 DF PROTO=UDPSPT=15315 DPT=53 LEN=40Feb 7 11:52:44 all2all:REJECT: IN= OUT=eth0 SRC=138.23.75.45DST=128.63.2.53 LEN=60 TOS=00 PREC=0x00 TTL=64 ID=53460 DF PROTO=UDPSPT=24344 DPT=53 LEN=40


NAT Table

Chain PREROUTING (policy ACCEPT 2474 packets, 279K bytes)

pkts bytes target prot opt in out sourcedestination

Chain POSTROUTING (policy ACCEPT 35 packets, 2500 bytes)

pkts bytes target prot opt in out sourcedestination10 752 eth0_masq all -- * eth0 0.0.0.0/00.0.0.0/0

Chain OUTPUT (policy ACCEPT 192 packets, 11920 bytes)

pkts bytes target prot opt in out sourcedestination

Chain eth0_masq (1 references)

pkts bytes target prot opt in out sourcedestination0 0 MASQUERADE all -- * * 192.168.1.0/240.0.0.0/0

Mangle Table

Chain PREROUTING (policy ACCEPT 2682 packets, 300K bytes)

pkts bytes target prot opt in out sourcedestination402 43682 man1918 all -- eth0 * 0.0.0.0/00.0.0.0/0 state NEW414 45293 pretos all -- * * 0.0.0.0/00.0.0.0/0

Chain INPUT (policy ACCEPT 351 packets, 38485 bytes)

pkts bytes target prot opt in out sourcedestination

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)

pkts bytes target prot opt in out sourcedestination

Chain OUTPUT (policy ACCEPT 365 packets, 27096 bytes)

pkts bytes target prot opt in out sourcedestination14 1088 outtos all -- * * 0.0.0.0/00.0.0.0/0

Chain POSTROUTING (policy ACCEPT 208 packets, 17676 bytes)

pkts bytes target prot opt in out sourcedestination

Chain logdrop (30 references)

pkts bytes target prot opt in out sourcedestination0 0 ULOG all -- * * 0.0.0.0/00.0.0.0/0 ULOG copy_range 0 nlgroup 1 prefix`Shorewall:man1918:DROP:' queue_threshold 10 0 DROP all -- * * 0.0.0.0/00.0.0.0/0

Chain man1918 (1 references)

pkts bytes target prot opt in out sourcedestination9 1562 RETURN all -- * * 0.0.0.0/0255.255.255.2550 0 RETURN all -- * * 0.0.0.0/0169.254.0.0/160 0 logdrop all -- * * 0.0.0.0/0172.16.0.0/120 0 logdrop all -- * * 0.0.0.0/0192.0.2.0/240 0 logdrop all -- * * 0.0.0.0/0192.168.0.0/160 0 logdrop all -- * * 0.0.0.0/00.0.0.0/70 0 logdrop all -- * * 0.0.0.0/02.0.0.0/80 0 logdrop all -- * * 0.0.0.0/05.0.0.0/80 0 logdrop all -- * * 0.0.0.0/07.0.0.0/80 0 logdrop all -- * * 0.0.0.0/010.0.0.0/80 0 logdrop all -- * * 0.0.0.0/023.0.0.0/80 0 logdrop all -- * * 0.0.0.0/027.0.0.0/80 0 logdrop all -- * * 0.0.0.0/031.0.0.0/80 0 logdrop all -- * * 0.0.0.0/036.0.0.0/70 0 logdrop all -- * * 0.0.0.0/039.0.0.0/80 0 logdrop all -- * * 0.0.0.0/041.0.0.0/80 0 logdrop all -- * * 0.0.0.0/042.0.0.0/80 0 logdrop all -- * * 0.0.0.0/049.0.0.0/80 0 logdrop all -- * * 0.0.0.0/050.0.0.0/80 0 logdrop all -- * * 0.0.0.0/058.0.0.0/70 0 logdrop all -- * * 0.0.0.0/060.0.0.0/80 0 logdrop all -- * * 0.0.0.0/070.0.0.0/70 0 logdrop all -- * * 0.0.0.0/072.0.0.0/50 0 logdrop all -- * * 0.0.0.0/083.0.0.0/80 0 logdrop all -- * * 0.0.0.0/084.0.0.0/60 0 logdrop all -- * * 0.0.0.0/088.0.0.0/50 0 logdrop all -- * * 0.0.0.0/096.0.0.0/30 0 logdrop all -- * * 0.0.0.0/0127.0.0.0/80 0 logdrop all -- * * 0.0.0.0/0197.0.0.0/80 0 logdrop all -- * * 0.0.0.0/0198.18.0.0/150 0 logdrop all -- * * 0.0.0.0/0201.0.0.0/80 0 logdrop all -- * * 0.0.0.0/0240.0.0.0/4

Chain outtos (1 references)

pkts bytes target prot opt in out sourcedestination0 0 TOS tcp -- * * 0.0.0.0/00.0.0.0/0 tcp dpt:22 TOS set 0x100 0 TOS tcp -- * * 0.0.0.0/00.0.0.0/0 tcp spt:22 TOS set 0x100 0 TOS tcp -- * * 0.0.0.0/00.0.0.0/0 tcp dpt:21 TOS set 0x100 0 TOS tcp -- * * 0.0.0.0/00.0.0.0/0 tcp spt:21 TOS set 0x100 0 TOS tcp -- * * 0.0.0.0/00.0.0.0/0 tcp spt:20 TOS set 0x080 0 TOS tcp -- * * 0.0.0.0/00.0.0.0/0 tcp dpt:20 TOS set 0x08


Chain pretos (1 references)







-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
------------------------------------------------------------------------
leaf-user mailing list: leaf-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/leaf-user
Support Request -- http://leaf-project.org/

[leaf-user] interal network card not responding properly

Reply via email to