RE: Redhat-list digest, Vol 1 #1116 - 17 msgs

Tue, 20 Feb 2001 14:51:36 -0800 

Good idea.
Thanks.


> -----Original Message-----
> From: Bob Glover [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, February 20, 2001 3:49 PM
> To: [EMAIL PROTECTED]
> Subject: Re: Redhat-list digest, Vol 1 #1116 - 17 msgs
> 
> 
> Maybe you should see what rule #13 in the input chain is.  From your
> original message:
> 
> > Feb 19 17:46:18 weisktsv03 kernel: Packet log: input DENY lo PROTO=1
> *                                                ^^^^^ The input chain
> 
> > 24.68.176.193:3 24.68.176.193:1 L=132 S=0xC0 I=4058 
> F=0x0000 T=255 (#13)
> *                                                 look at rule #13   
> ^^^
> 
> Perhaps your packet never reached the accept rules that you 
> have to the
> loopback device?
> 
> It's just a thought.
> 
> - Bob Glover
> 
> > Date: Tue, 20 Feb 2001 13:48:21 -0600 (CST)
> > From: "Mikkel L. Ellertson" <[EMAIL PROTECTED]>
> > To: <[EMAIL PROTECTED]>
> > Subject: Re: Curious Log Entries
> > Reply-To: [EMAIL PROTECTED]
> > 
> > On Tue, 20 Feb 2001, Leonard den Ottolander wrote:
> > 
> > >               Hi Mikkel, Robby,
> > >
> > > > > Feb 19 17:46:18 weisktsv03 kernel: Packet log: input 
> DENY lo PROTO=1
> > > > > 24.68.176.193:3 24.68.176.193:1 L=132 S=0xC0 I=4058 
> F=0x0000 T=255 (#13)
> > > > >
> > > > > What could be wrong?  Why is 24.68.176.193 trying to 
> connect to itself fro
> > > > > port 3 to port 1?
> > > > >
> > > > Even more interesting, it is talking to itself on the 
> loopback device,
> > > > not on a NIC...  I would check your routing table 
> first, then your
> > > > firewall rules.
> > >
> > >  Probably the loopback device is only open for the 
> 127.0.0.0/8 address range.
> > > I have been wondering before if the loopback device 
> should be opened only for
> > > this range, or for all addresses. So maybe somebody could 
> tell us something
> > > about that.
> > >
> > >                                       CUO,
> > >
> > >                                       Leonard.
> > >
> > In my firewall rules, I have the loopback interface open 
> for everything.
> > 
> >     ipchains -A input  -i lo  -j ACCEPT
> >     ipchains -A output -i lo  -j ACCEPT
> > 
> > Mikkel
> 
> 
> 
> _______________________________________________
> Redhat-list mailing list
> [EMAIL PROTECTED]
> https://listman.redhat.com/mailman/listinfo/redhat-list
> 



_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

Reply via email to