linux2003:/etc# iptables -L -n Chain INPUT (policy DROP) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED syn-flood tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:0x16/0x02 DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:!0x16/0x02 state NEW DROP all -f 0.0.0.0/0 0.0.0.0/0 DROP all -- 192.168.1.13 0.0.0.0/0 DROP all -- 172.16.0.0/12 0.0.0.0/0 DROP all -- 224.0.0.0/4 0.0.0.0/0 DROP all -- 240.0.0.0/5 0.0.0.0/0 DROP all -- 0.0.0.0/0 127.0.0.0/8 DROP all -- 0.0.0.0/0 10.0.0.255 ACCEPT udp -- 10.37.1.26 0.0.0.0/0 udp spt:53 state ESTABLISHED ACCEPT udp -- 10.37.1.254 0.0.0.0/0 udp spt:53 state ESTABLISHED ACCEPT tcp -- 10.0.0.0/8 0.0.0.0/0 tcp dpt:22 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:22 state ESTABLISHED ACCEPT tcp -- 10.0.0.0/8 0.0.0.0/0 tcp dpt:3306 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:3306 state ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:80 state ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:443 state ESTABLISHED ACCEPT tcp -- 10.0.0.0/8 0.0.0.0/0 tcp dpt:21 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:21 state ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:20 state RELATED,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spts:1024:65535 dpts:1024:65535 state ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:25 state ESTABLISHED REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:113 reject-with tcp-reset ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED DROP udp -- 0.0.0.0/0 0.0.0.0/0 DROP icmp -- 0.0.0.0/0 0.0.0.0/0 DROP tcp -- 0.0.0.0/0 0.0.0.0/0 DROP all -- 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy DROP) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED Chain OUTPUT (policy DROP) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ACCEPT all -- 192.168.1.13 0.0.0.0/0 ACCEPT udp -- 0.0.0.0/0 10.37.1.26 udp dpt:53 state NEW,ESTABLISHED ACCEPT udp -- 0.0.0.0/0 10.37.1.254 udp dpt:53 state NEW,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 state NEW,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:3306 state NEW,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 state NEW,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 state NEW,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 state NEW,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:20 state ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spts:1024:65535 dpts:1024:65535 state RELATED,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 state NEW,ESTABLISHED ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp spts:32769:65535 dpts:33434:33523 state NEW ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 DROP icmp -- 0.0.0.0/0 0.0.0.0/0 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 DROP tcp -- !192.168.1.13 10.0.0.0/8 DROP all -- 0.0.0.0/0 0.0.0.0/0 Chain syn-flood (1 references) target prot opt source destination RETURN all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 1/sec burst 4 DROP all -- 0.0.0.0/0 0.0.0.0/0 linux2003:/etc# > -----Original Message----- > From: Adam Thornton [mailto:[EMAIL PROTECTED] > Sent: Friday, September 10, 2004 1:57 PM > To: [EMAIL PROTECTED] > Subject: Re: Have a serious problem with mp2003 > > On Fri, 2004-09-10 at 13:17, Noll, Ralph wrote: > > linux2003:~# route > > Kernel IP routing table > > Destination Gateway Genmask Flags > Metric Ref Use > > Iface > > 192.168.1.0 * 255.255.255.0 U 0 > 0 0 > > eth0 > > default 192.168.1.1 0.0.0.0 UG 0 > 0 0 > > eth0 > > This looks fine. I don't know why you can't ping yourself or > loopback, but something is seriously wrong. > > Try "iptables -L -n" (maybe you're blocking ICMP or something?) > > ---------------------------------------------------------------------- > For LINUX-390 subscribe / signoff / archive access > instructions, send email to [EMAIL PROTECTED] with the > message: INFO LINUX-390 or visit > http://www.marist.edu/htbin/wlvindex?LINUX-390 > ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390