[PLUG] Network routing

Jeff Blain jelque at feather.net
Mon Jun 24 22:04:35 UTC 2002


While checking syslog on my firewall it shows...

Jun 24 16:56:46 rftc ippl: ICMP message type echo request from
192.168.1.2
Jun 24 16:56:49 rftc last message repeated 2 times
Jun 24 16:56:49 rftc ippl: ICMP message type destination unreachable -
bad host from 192.168.0.1

I can ping from my firewall x.x.0.1 to x.x.1.1 but not to x.x.1.2 

Jeff


On Mon, Jun 24, 2002 at 04:54:00PM -0500, Jeff Blain wrote:
> On Mon, Jun 24, 2002 at 02:05:44PM -0700, Russell Senior wrote:
> > >>>>> "Jeff" == Jeff Blain <jelque at feather.net> writes:
> > 
> > Jeff> bash-2.05a# cat /proc/sys/net/ipv4/ip_forward 1
> > 
> > Was that two lines or one?  That is, was "1" the output of the "cat"?
> 
> yes, it was 2 lines. I should have pasted...
> 
> bash-2.05a# cat /proc/sys/net/ipv4/ip_forward 
> 1
> 
> > Jeff> bash-2.05a# route -n Kernel IP routing table Destination Gateway
> > Jeff> Genmask Flags Metric Ref Use Iface 192.168.1.0 0.0.0.0
> > Jeff> 255.255.255.0 U 0 0 0 eth1 192.168.0.0 0.0.0.0 255.255.255.0 U 0
> > Jeff> 0 0 eth0 0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 eth0
> > 
> > Jeff> Running tcpdump on eth0 on machine B and trying to ping A from
> > Jeff> C...
> > 
> > Try running tcpdump with a -n option and post again.
> > 
> 
> bash-2.05a# tcpdump -n
> tcpdump: listening on eth0
> 16:44:04.722390 arp who-has 192.168.0.10 tell 192.168.0.1
> 16:44:04.722438 arp reply 192.168.0.10 is-at 0:20:af:f:95:29
> 16:44:05.478989 192.168.0.1.514 > 192.168.0.10.514:  udp 129
> 16:44:11.520748 192.168.0.1.514 > 192.168.0.10.514:  udp 129
> 16:44:15.639729 192.168.1.2 > 192.168.0.1: icmp: echo request
> 16:44:15.641108 arp who-has 192.168.1.2 tell 192.168.0.1
> 16:44:15.652166 192.168.0.1.514 > 192.168.0.10.514:  udp 58
> 16:44:16.638050 arp who-has 192.168.1.2 tell 192.168.0.1
> 16:44:16.638550 192.168.1.2 > 192.168.0.1: icmp: echo request
> 16:44:17.637683 arp who-has 192.168.1.2 tell 192.168.0.1
> 16:44:17.638635 192.168.1.2 > 192.168.0.1: icmp: echo request
> 16:44:18.638743 192.168.1.2 > 192.168.0.1: icmp: echo request
> 16:44:18.640168 arp who-has 192.168.1.2 tell 192.168.0.1
> 
> When doing tcpdump -n on my firewall it shows that packets are being
> recieved, but do not route from there.
> 
> 10:50:24.170628 192.168.1.2 > 192.168.0.1: icmp: echo request
> 10:50:24.170628 arp who-has 192.168.1.2 tell 192.168.0.1
> 
> 
> Jeff
> 
> 
> _______________________________________________
> PLUG mailing list
> PLUG at lists.pdxlinux.org
> http://lists.pdxlinux.org/mailman/listinfo/plug




More information about the PLUG mailing list