Level Extreme platform
Subscription
Corporate profile
Products & Services
Support
Legal
Français
Router, Firewall, Gateway
Message
 
To
06/12/2001 14:18:07
Michael Copeland
Genesis Group
Bartlesville, Oklahoma, United States
General information
Forum:
Linux
Category:
Internet Connection issues
Title:
Re: Router, Firewall, Gateway
Miscellaneous
Thread ID:
00590637
Message ID:
00590784
Views:
24
>>>>>I had a Linux box set up with IPChains, Sendmail, and Apache...and 2 NICs. It worked great. I didn't keep up with patches and someone hacked it.
>>>>>
>>>>>To replace it, I installed a Linksys DSL/Router/Firewall (BEFSR11) and reformated the Linux box with RH7.2. Now, the Linksys sits between the Internet and the internal network hub, and the Linux box is configured with one NIC that is connected to the network hub.
>>>>>
>>>>>I can route from any Wind-box internally on the network to the Internet through the Linksys router.
>>>>>I can hit the Apache server on the Linux box from any internal Wind-box.
>>>>>I can connect to Sendmail (and POP3) on the Linux box from any internal Wind-box.
>>>>>
>>>>>I have set up port forwarding from the Linksys Router to forward all port 25, 80, and 110 packets to the IP (192.168.0.201) on the Linux box.
>>>>>I have set the Linux box (192.168.0.201) to use the Linksys Router (192.168.0.1) as the Gateway.
>>>>>
>>>>>I do not have IPChains or IPTable configured on the Linux box since it is not acting as a firewall any more.
>>>>>
>>>>>The problem:
>>>>>The Linux box is not accessable from the Internet for any port.
>>>>>The Linux box can't access the Internet...at all.
>>>>>
>>>>>What am I missing? My forehead is sore from banging it against the wall...
>>>>>Any feedback welcome and greatly appreciated!
>>>>>
>>>>>Mike Copeland
>>>>>Genesis Group Software
>>>>
>>>>What have you got in your /etc/resolv.conf file?
>>>>It usually contains DNS IP addresses of your IPS...
>>>
>>>Resolv.conf contains the names of three DNS Servers...
>>>nameserver 151.164.1.7
>>>nameserver 207.217.126.81
>>>nameserver 24.116.0.83
>>>
>>>I'm starting to think it's a packet-routing problem because I can't even ping from the Linux box out to an IP on the Inet.
>>>
>>>Mike
>>
>>Seems like it. What does netstat show on the RH box?
>
>
> [copelandmike@server copelandmike]$ netstat -r
> Kernel IP routing table
> Destination Gateway Genmask Iface
> 192.168.0.0 * 255.255.255.0 eth0
> 127.0.0.0 * 255.0.0.0 lo


Have you tried traceroute with the -n or -a or -r flags?
I like the -n flag because it elimintes the '*'s and shows 'UHGDML' status and the metric. The -a flag shows the sockets. Are the sockets blocked in modules.conf? Are permissions ok?

You might want to do 'ifconfig' as root to see what the MTU setting is and if the mac address seems ok.
Nebraska Dept of Revenue
Previous
Reply
Map
View

Click here to load this message in the networking platform