solved, because my network use different network 192(255.255.0.0) and 10(255.0.0.0) every packets that go to my netmask x.x.x.x(255.255.255.192) handled by PREROUTING in nat table (in the script, that network is DROPPED by default) i don't know why?
On Tue, Nov 13, 2001 at 01:56:36PM -0500, Lewi wrote: > i got rc.firewall script from BoeingWorld.com > and with little edit to appropriate with my network, because i just have a 1 > ethernet card to access net and LAN. > add a tcp and udp port which open in my server(I know it from nmap my server) > > now the problem is my server is real ip with 1.2.3.4 > and my lan is 192.169.x.x 10.x.x.x > > now when i ran this script, > my lan can not reach my server at all, but ip with same netmask can reach it and >it's right with all port which opened. > so what's wrong? > > > my input just like this > > in the INPUT chain > IPTABLES -A INPUT -p TCP -i eth0 -j tcp_packets > > in the tcp_packets chain > IPTABLES -A tcp_packets -p tcp -s0/0 --dport 80 -j allowed > .. > .. > .. > > int the allowed chain is default > > > -- > ichtus > ------ > Lewi Supranata .K > ICQ: 50643061 -- ichtus ------ Lewi Supranata .K ICQ: 50643061
msg63885/pgp00000.pgp
Description: PGP signature
