Re: Have a serious problem with mp2003

Fri, 10 Sep 2004 13:11:04 -0700 

linux2003:/etc# iptables -L -n
Chain INPUT (policy DROP)
target     prot opt source               destination
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          state
RELATED,ESTABLISHED
syn-flood  tcp  --  0.0.0.0/0            0.0.0.0/0          tcp
flags:0x16/0x02
DROP       tcp  --  0.0.0.0/0            0.0.0.0/0          tcp
flags:!0x16/0x02 state NEW
DROP       all  -f  0.0.0.0/0            0.0.0.0/0
DROP       all  --  192.168.1.13         0.0.0.0/0
DROP       all  --  172.16.0.0/12        0.0.0.0/0
DROP       all  --  224.0.0.0/4          0.0.0.0/0
DROP       all  --  240.0.0.0/5          0.0.0.0/0
DROP       all  --  0.0.0.0/0            127.0.0.0/8
DROP       all  --  0.0.0.0/0            10.0.0.255
ACCEPT     udp  --  10.37.1.26           0.0.0.0/0          udp spt:53
state ESTABLISHED
ACCEPT     udp  --  10.37.1.254          0.0.0.0/0          udp spt:53
state ESTABLISHED
ACCEPT     tcp  --  10.0.0.0/8           0.0.0.0/0          tcp dpt:22
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp spt:22
state ESTABLISHED
ACCEPT     tcp  --  10.0.0.0/8           0.0.0.0/0          tcp dpt:3306
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp spt:3306
state ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpt:80
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp spt:80
state ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpt:443
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp spt:443
state ESTABLISHED
ACCEPT     tcp  --  10.0.0.0/8           0.0.0.0/0          tcp dpt:21
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp spt:21
state ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp spt:20
state RELATED,ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp
spts:1024:65535 dpts:1024:65535 state ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp spt:25
state ESTABLISHED
REJECT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpt:113
reject-with tcp-reset
ACCEPT     icmp --  0.0.0.0/0            0.0.0.0/0          state
RELATED,ESTABLISHED
DROP       udp  --  0.0.0.0/0            0.0.0.0/0
DROP       icmp --  0.0.0.0/0            0.0.0.0/0
DROP       tcp  --  0.0.0.0/0            0.0.0.0/0
DROP       all  --  0.0.0.0/0            0.0.0.0/0

Chain FORWARD (policy DROP)
target     prot opt source               destination
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0          state
RELATED,ESTABLISHED
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0          state
RELATED,ESTABLISHED

Chain OUTPUT (policy DROP)
target     prot opt source               destination
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0
ACCEPT     all  --  192.168.1.13         0.0.0.0/0
ACCEPT     udp  --  0.0.0.0/0            10.37.1.26         udp dpt:53
state NEW,ESTABLISHED
ACCEPT     udp  --  0.0.0.0/0            10.37.1.254        udp dpt:53
state NEW,ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpt:22
state NEW,ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpt:3306
state NEW,ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpt:80
state NEW,ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpt:443
state NEW,ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpt:21
state NEW,ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpt:20
state ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp
spts:1024:65535 dpts:1024:65535 state RELATED,ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpt:25
state NEW,ESTABLISHED
ACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0          udp
spts:32769:65535 dpts:33434:33523 state NEW
ACCEPT     icmp --  0.0.0.0/0            0.0.0.0/0          state
NEW,RELATED,ESTABLISHED
ACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0
DROP       icmp --  0.0.0.0/0            0.0.0.0/0
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0
DROP       tcp  -- !192.168.1.13         10.0.0.0/8
DROP       all  --  0.0.0.0/0            0.0.0.0/0

Chain syn-flood (1 references)
target     prot opt source               destination
RETURN     all  --  0.0.0.0/0            0.0.0.0/0          limit: avg
1/sec burst 4
DROP       all  --  0.0.0.0/0            0.0.0.0/0
linux2003:/etc# 

> -----Original Message-----
> From: Adam Thornton [mailto:[EMAIL PROTECTED] 
> Sent: Friday, September 10, 2004 1:57 PM
> To: [EMAIL PROTECTED]
> Subject: Re: Have a serious problem with mp2003
> 
> On Fri, 2004-09-10 at 13:17, Noll, Ralph wrote:
> > linux2003:~# route
> > Kernel IP routing table
> > Destination     Gateway         Genmask         Flags 
> Metric Ref    Use
> > Iface
> > 192.168.1.0     *               255.255.255.0   U     0     
>  0        0
> > eth0
> > default         192.168.1.1     0.0.0.0         UG    0     
>  0        0
> > eth0
> 
> This looks fine.  I don't know why you can't ping yourself or 
> loopback, but something is seriously wrong.
> 
> Try "iptables -L -n" (maybe you're blocking ICMP or something?)
> 
> ----------------------------------------------------------------------
> For LINUX-390 subscribe / signoff / archive access 
> instructions, send email to [EMAIL PROTECTED] with the 
> message: INFO LINUX-390 or visit 
> http://www.marist.edu/htbin/wlvindex?LINUX-390
> 

----------------------------------------------------------------------
For LINUX-390 subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390

Reply via email to