Page 2 of 7 FirstFirst 1234 ... LastLast
Results 11 to 20 of 62

Thread: eth1 receives, no transmit.

  1. #11
    Join Date
    Jan 2008
    Beans
    Hidden!
    Distro
    Kubuntu 13.04 Raring Ringtail

    Re: eth1 receives, no transmit.

    "can you see me" will show only the open services, right? (correct me if i am wrong). In our case, with the rules we were trying out, we didn't yet open up any of our services to the internet(eth0). Allowing ports 80,22 to be forwarded through the router is different from accepting incoming connections on those ports. So they will not show up on "can you see me".

    This is getting very confusing. Can you provide some more details:
    1. Did the clients on LAN get IP from the DHCP server running on your ubuntu box(after making changes in firewall rules)?
    2. Were they able to ping an IP (not a DNS name) on the internet?
    3. What exactly is the role of the ubuntu box? From your previous posts, I guess that it is the gateway to internet and it is also the DHCP server. What else? What other services does the box provide?

  2. #12
    Join Date
    Jun 2012
    Location
    Isaan (the REAL Thailand)
    Beans
    172
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: eth1 receives, no transmit.

    My sincere apologies for being confusing. Ok, aparently what I did at school today accomplished nothing as I rebooted after I flushed and re-entered the rules you provided. I didn't bring the machine home today, so try again with same routine tomorrow. 1. no (see above) 2. no (see above) 3right now the box does nothing. it has been working fine for six months prior. It is getting dhcp from adsl modem router, then fiber converter modem to fiber line. Box hosts a simple website, no email service, we have a samba share for clients, DHCP is dealt to LAN, it also has a dns cache set up. As far as I know there is no firewall, currently running. It is also an ssh2 server. It has DUC software to notify No-ip of current ip#. Output I posted was at end of day today iptables -L

  3. #13
    Join Date
    Jun 2012
    Location
    Isaan (the REAL Thailand)
    Beans
    172
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: eth1 receives, no transmit.

    I don't see the output I posted.

  4. #14
    Join Date
    Jun 2012
    Location
    Isaan (the REAL Thailand)
    Beans
    172
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: eth1 receives, no transmit.

    Chain INPUT (policy ACCEPT)
    target prot opt source destination
    ufw-before-logging-input all -- anywhere anywhere
    ufw-before-input all -- anywhere anywhere
    ufw-after-input all -- anywhere anywhere
    ufw-after-logging-input all -- anywhere anywhere
    ufw-reject-input all -- anywhere anywhere
    ufw-track-input all -- anywhere anywhere

    Chain FORWARD (policy ACCEPT)
    target prot opt source destination
    ufw-before-logging-forward all -- anywhere anywhere
    ufw-before-forward all -- anywhere anywhere
    ufw-after-forward all -- anywhere anywhere
    ufw-after-logging-forward all -- anywhere anywhere
    ufw-reject-forward all -- anywhere anywhere

    Chain OUTPUT (policy ACCEPT)
    target prot opt source destination
    ufw-before-logging-output all -- anywhere anywhere
    ufw-before-output all -- anywhere anywhere
    ufw-after-output all -- anywhere anywhere
    ufw-after-logging-output all -- anywhere anywhere
    ufw-reject-output all -- anywhere anywhere
    ufw-track-output all -- anywhere anywhere

    Chain ufw-after-forward (1 references)
    target prot opt source destination

    Chain ufw-after-input (1 references)
    target prot opt source destination

    Chain ufw-after-logging-forward (1 references)
    target prot opt source destination

    Chain ufw-after-logging-input (1 references)
    target prot opt source destination

    Chain ufw-after-logging-output (1 references)
    target prot opt source destination

    Chain ufw-after-output (1 references)
    target prot opt source destination

    Chain ufw-before-forward (1 references)
    target prot opt source destination

    Chain ufw-before-input (1 references)
    target prot opt source destination

    Chain ufw-before-logging-forward (1 references)
    target prot opt source destination

    Chain ufw-before-logging-input (1 references)
    target prot opt source destination

    Chain ufw-before-logging-output (1 references)
    target prot opt source destination

    Chain ufw-before-output (1 references)
    target prot opt source destination

    Chain ufw-reject-forward (1 references)
    target prot opt source destination

    Chain ufw-reject-input (1 references)
    target prot opt source destination

    Chain ufw-reject-output (1 references)
    target prot opt source destination

    Chain ufw-track-input (1 references)
    target prot opt source destination

    Chain ufw-track-output (1 references)
    target prot opt source

  5. #15
    Join Date
    Jun 2012
    Location
    Isaan (the REAL Thailand)
    Beans
    172
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: eth1 receives, no transmit.

    ok, that was "before" purging again. purged again and entered listed rules. result: same as before. client send packets, but does not receive ip . ping from client 10 10.10.0.1 "destination host unreachable"
    iptables -L yields Chain INPUT (policy ACCEPT)
    target prot opt source destination
    ACCEPT all -- anywhere anywhere

    Chain FORWARD (policy ACCEPT)
    target prot opt source destination
    ACCEPT all -- anywhere anywhere

    Chain OUTPUT (policy ACCEPT)
    target prot opt source destination

    Chain ufw-after-forward (0 references)
    target prot opt source destination

    Chain ufw-after-input (0 references)
    target prot opt source destination

    Chain ufw-after-logging-forward (0 references)
    target prot opt source destination

    Chain ufw-after-logging-input (0 references)
    target prot opt source destination

    Chain ufw-after-logging-output (0 references)
    target prot opt source destination

    Chain ufw-after-output (0 references)
    target prot opt source destination

    Chain ufw-before-forward (0 references)
    target prot opt source destination

    Chain ufw-before-input (0 references)
    target prot opt source destination

    Chain ufw-before-logging-forward (0 references)
    target prot opt source destination

    Chain ufw-before-logging-input (0 references)
    target prot opt source destination

    Chain ufw-before-logging-output (0 references)
    target prot opt source destination

    Chain ufw-before-output (0 references)
    target prot opt source destination

    Chain ufw-reject-forward (0 references)
    target prot opt source destination

    Chain ufw-reject-input (0 references)
    target prot opt source destination

    Chain ufw-reject-output (0 references)
    target prot opt source destination

    Chain ufw-track-input (0 references)
    target prot opt source destination

    Chain ufw-track-output (0 references)
    target prot opt source destination

  6. #16
    Join Date
    Jun 2012
    Location
    Isaan (the REAL Thailand)
    Beans
    172
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: eth1 receives, no transmit.

    iptables -L -nv
    Chain INPUT (policy ACCEPT 33489 packets, 9385K bytes)
    pkts bytes target prot opt in out source destination
    0 0 ACCEPT all -- eth1 * 0.0.0.0/0 0.0.0.0/0

    Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
    pkts bytes target prot opt in out source destination
    0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0

    Chain OUTPUT (policy ACCEPT 8586 packets, 1229K bytes)
    pkts bytes target prot opt in out source destination

    Chain ufw-after-forward (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-after-input (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-after-logging-forward (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-after-logging-input (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-after-logging-output (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-after-output (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-before-forward (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-before-input (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-before-logging-forward (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-before-logging-input (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-before-logging-output (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-before-output (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-reject-forward (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-reject-input (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-reject-output (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-track-input (0 references)
    pkts bytes target prot opt in out source destination

    Chain ufw-track-output (0 references)
    pkts bytes target prot opt in out source destination

  7. #17
    Join Date
    Jun 2012
    Location
    Isaan (the REAL Thailand)
    Beans
    172
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: eth1 receives, no transmit.

    iptables -L -nv -t nat
    Chain PREROUTING (policy ACCEPT 21060 packets, 1702K bytes)
    pkts bytes target prot opt in out source destination

    Chain POSTROUTING (policy ACCEPT 2016 packets, 174K bytes)
    pkts bytes target prot opt in out source destination
    106 6706 MASQUERADE all -- * eth0 0.0.0.0/0 0.0.0.0/0

    Chain OUTPUT (policy ACCEPT 2299 packets, 217K bytes)
    pkts bytes target prot opt in out source destination

  8. #18
    Join Date
    Jun 2012
    Location
    Isaan (the REAL Thailand)
    Beans
    172
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: eth1 receives, no transmit.

    iptables -L -nv -t nat
    Chain PREROUTING (policy ACCEPT 21060 packets, 1702K bytes)
    pkts bytes target prot opt in out source destination

    Chain POSTROUTING (policy ACCEPT 2016 packets, 174K bytes)
    pkts bytes target prot opt in out source destination
    106 6706 MASQUERADE all -- * eth0 0.0.0.0/0 0.0.0.0/0

    Chain OUTPUT (policy ACCEPT 2299 packets, 217K bytes)
    pkts bytes target prot opt in out source destination
    root@JPRSchool:~# iptables -A INPUT -i eth3 -j ACCEPT
    root@JPRSchool:~# iptables -L -nv -t nat
    Chain PREROUTING (policy ACCEPT 21632 packets, 1755K bytes)
    pkts bytes target prot opt in out source destination

    Chain POSTROUTING (policy ACCEPT 2035 packets, 176K bytes)
    pkts bytes target prot opt in out source destination
    174 12189 MASQUERADE all -- * eth0 0.0.0.0/0 0.0.0.0/0

    Chain OUTPUT (policy ACCEPT 2386 packets, 225K bytes)
    pkts bytes target prot opt in out source destination

  9. #19
    Join Date
    Jun 2012
    Location
    Isaan (the REAL Thailand)
    Beans
    172
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: eth1 receives, no transmit.

    should the "MASQUERADE" rule list the subnet and range of the LAN?

  10. #20
    Join Date
    Jun 2012
    Location
    Isaan (the REAL Thailand)
    Beans
    172
    Distro
    Ubuntu 10.04 Lucid Lynx

    Re: eth1 receives, no transmit.

    BTW I believe I mentioned before there are 2 ethernet cards, eth1 and eth3 as well as mainboard eth0. Both are installed. but currently
    # The loopback network interface
    auto lo
    iface lo inet loopback
    address 127.0.0.1
    netmask 255.255.255.0

    # The primary network interface
    auto eth0
    iface eth0 inet dhcp
    gateway 192.168.1.1

    # The LAN interface
    auto eth3
    iface eth3 inet static
    address 10.10.0.1
    netmask 255.255.255.0

Page 2 of 7 FirstFirst 1234 ... LastLast

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •