** Reply to message from "Drew Hunt" <[EMAIL PROTECTED]> on Thu, 16
Nov 2000 06:46:08 -0700
> I'm running RH 6.2, but have the same problem. I traced it to the firewall,
> having pulled it down momentarily and having the traceroute work perfectly.
> One of the first 5 ICMP ports has to be enabled to receive packets, not just
> responses with the !-y option, but I don't remember which one. I never did
> fix it myself because I figured it wasn't worth the first few lines of stars
> for the compromised stealth. I already know that they are my firewall, the
> cablemodem router, and my ISPs first router respectively.
That would be port 0. An appropriate ipchains rule could be:
ipchains -A input -i ppp0 -p icmp --dport 0 -j ACCEPT -l
There may be a better way to set this up using the "--icmp-type" switch.
Jack Bowling
Prince George, BC
mailto:[EMAIL PROTECTED]
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
