Re: can't ping LAN machine, NET pings fine

From: Benedict Verheyen (linux4bene_at_pandora.be)
Date: 08/20/03

Next message: Louie Miranda: "Re: xfree, matrox millennium G450 problem.."

Previous message: Sven Luther: "Re: Gnome2.2 backport and XFree86 4.3 on woody [was R:e XFree86 4.3 in Woody]"
Next in thread: Benedict Verheyen: "Re: can't ping LAN machine, NET pings fine"
Maybe reply: Benedict Verheyen: "Re: can't ping LAN machine, NET pings fine"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

To: debian-user@lists.debian.org
Date: Wed 20 Aug 2003 09:29:27 +0200

-----------------------
"Antony Gelberg" <antony@antgel.co.uk> wrote:
------------------------

>Benedict Verheyen wrote:
>> Hi,
>>
>> i have a Debian (testing) machine as a firewall (named arthur) with 2
>> nics, eth0 that is connected to the internet and gets an ip of the ISP
>> via DHCP and eth1 which serves ip's for the lan and has ip
>> 192.168.0.1. Currently there is only 1 other pc (named lancelot)
>> besides the firewall machine in the network. It gets ip 192.168.0.10
>> from the DHCP server on the firewall.
>>
>> WORKS:
>> ping from firewall to net
>> ping from lan to net
>> surfing net from lan
>>
>> DOESN'T WORK:
>> ping from firewall to lan
>> ping from lan to firewall
>>
>> I have disabled the iptables firewall on the firewall machine to be
>> sure that this isn't it. Result is the same.
>
>Can you post iptables -L just after a ping fails?

If will do that this afternoon as i'm not behind my box.
But when i tested, i switched off iptables and allowed everything
basically:
iptables -F
iptables -X
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT

My firewall has been up all night so i checked the interfaces
and i saw this:
eth0, RX (9.7 MB), TX (819KB)
eth1, RX (810KB), TX (4.4MB)
This looks fairly normal.
And i could send email from my lan also.

I did switch the network devices before. Could this have caused
the problem? I don't think so because i can surf the net from
the lan.

Benedict

-- 
To UNSUBSCRIBE, email to debian-user-request@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Next message: Louie Miranda: "Re: xfree, matrox millennium G450 problem.."

Previous message: Sven Luther: "Re: Gnome2.2 backport and XFree86 4.3 on woody [was R:e XFree86 4.3 in Woody]"
Next in thread: Benedict Verheyen: "Re: can't ping LAN machine, NET pings fine"
Maybe reply: Benedict Verheyen: "Re: can't ping LAN machine, NET pings fine"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages

RE: Advice on which FreeBSD firewall package to choose.
... I have not used iptables or ipfw. ... Advice on which FreeBSD firewall package to choose. ... Software-based VPN connections out from both the Inside LAN and Wireless ...
(freebsd-questions)
Re: [Fwd: Re: Getting connected to Verizon 3G network -UPDATE]
... interface on the MiFi, but you can ping your local WiFi interface. ... Check to make sure you have no iptables ... As soon as you said firewall, I remembered having this problem before. ...
(Debian-User)
Re: Cant ping Just One Address
... access alle computers on LAN and Internet proper. ... But from the LAN i can NOT ... PING my notebook and also i can not access the shares of my ... > Blocked pings generally have one cause - a misconfigured or overlooked firewall ...
(microsoft.public.windowsxp.network_web)
cant ping LAN machine, NET pings fine
... via DHCP and eth1 which serves ip's for the lan and has ip 192.168.0.1. ... Currently there is only 1 other pc besides the firewall ... ping from firewall to net ...
(Debian-User)
Re: IPTABLES
... > I need to setup the firewall IPTABLES on CentOS. ... You set up the firewall using command line commands. ... > allow to acces FROM the LAN only to a computer with MAC ADRESS xxxxxx. ...
(comp.os.linux.setup)