Maybe you should see what rule #13 in the input chain is. From your
original message:
> Feb 19 17:46:18 weisktsv03 kernel: Packet log: input DENY lo PROTO=1
* ^^^^^ The input chain
> 24.68.176.193:3 24.68.176.193:1 L=132 S=0xC0 I=4058 F=0x0000 T=255 (#13)
* look at rule #13
^^^
Perhaps your packet never reached the accept rules that you have to the
loopback device?
It's just a thought.
- Bob Glover
> Date: Tue, 20 Feb 2001 13:48:21 -0600 (CST)
> From: "Mikkel L. Ellertson" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Subject: Re: Curious Log Entries
> Reply-To: [EMAIL PROTECTED]
>
> On Tue, 20 Feb 2001, Leonard den Ottolander wrote:
>
> > Hi Mikkel, Robby,
> >
> > > > Feb 19 17:46:18 weisktsv03 kernel: Packet log: input DENY lo PROTO=1
> > > > 24.68.176.193:3 24.68.176.193:1 L=132 S=0xC0 I=4058 F=0x0000 T=255 (#13)
> > > >
> > > > What could be wrong? Why is 24.68.176.193 trying to connect to itself fro
> > > > port 3 to port 1?
> > > >
> > > Even more interesting, it is talking to itself on the loopback device,
> > > not on a NIC... I would check your routing table first, then your
> > > firewall rules.
> >
> > Probably the loopback device is only open for the 127.0.0.0/8 address range.
> > I have been wondering before if the loopback device should be opened only for
> > this range, or for all addresses. So maybe somebody could tell us something
> > about that.
> >
> > CUO,
> >
> > Leonard.
> >
> In my firewall rules, I have the loopback interface open for everything.
>
> ipchains -A input -i lo -j ACCEPT
> ipchains -A output -i lo -j ACCEPT
>
> Mikkel
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list