Hi, I have an openbsd router running pf. Using a 'pass all' rule set. pass in log all keep state pass out log all keep state I manage to ping one way! But not the other. I originally had a wireless laptop running vista on 172.0.0.6, trying to ping Server 2003 on 192.168.0.4. default Gateways set in both these machines to: Laptop: 172.16.0.254 (router em0) Server 2003: 192.168.0.254 (router rl0)
I thought it was the Server preventing pings even though windows firewall service was off, so tried a Ubuntu machine, same problem. Output from pinging from laptop to ubuntu: # tcpdump -n -e -ttt -i pflog0 tcpdump: listening on pflog0, link-type PFLOG Jan 20 09:00:34.514535 rule 0/(match) pass in on em0: 172.16.0.6 > 192.168.0.10: icmp: echo request Jan 20 09:00:34.514551 rule 1/(match) pass out on rl0: 172.16.0.6 > 192.168.0.10: icmp: echo request 2 packets received by filter 0 packets dropped by kernel This ping does not work from linux ubuntu to laptop: # tcpdump -n -e -ttt -i pflog0 tcpdump: listening on pflog0, link-type PFLOG Jan 20 09:00:46.735139 rule 0/(match) pass in on rl0: 192.168.0.10 > 172.16.0.6: icmp: echo request (DF) Jan 20 09:00:46.735156 rule 1/(match) pass out on em0: 192.168.0.10 > 172.16.0.6: icmp: echo request (DF) 2 packets received by filter 0 packets dropped by kernel I wonder if it is a static route issue on the client? Or is it a static route issue on the router? I added "route add default gw 192.168.0.254" on ubuntu and also "route add -net 172.16.0.0 mask 255.255.255.0 gw 192.168.0.254" Not sure what I am doing wrong. Can anyone help me? Thanks my net diagram: clients(laptop wireless) <----->172.16.0.0 /24<------- hub -------> openbsd router <-------- hub --------> 192.168.0.0 /24------ client (ubuntu or server 2003) _________________________________________________________________ Imagine a life without walls. See the possibilities http://clk.atdmt.com/UKM/go/122465943/direct/01/
