Am Montag, 24. Oktober 2005 03:42 schrieb Tom Guder:

...

...

was sagt: iptables -L

Die 3 leeren Tabellen. das sind sie (A-> 192.168.1.1, B-> 192.168.1.2) Beide mit SubnetMask 255.255.255.0 und bcast 192.168.1.255

Laeft sonst irgendwo eine firewall? eventl. iptables -L vom anderen Rechner (ausgehend geblockt/gedropt?)

Sorry, das ist jetzt ein bisschen viel ;)

Chain INPUT (policy DROP) target prot opt source destination ACCEPT all -- anywhere anywhere logaborted tcp -- anywhere anywhere state RELATED,ESTABLISHED tcp flags:RST/RST ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT icmp -- anywhere anywhere icmp destination-unreachable ACCEPT icmp -- anywhere anywhere icmp time-exceeded ACCEPT icmp -- anywhere anywhere icmp parameter-problem nicfilt all -- anywhere anywhere srcfilt all -- anywhere anywhere

Chain FORWARD (policy DROP) target prot opt source destination ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT icmp -- anywhere anywhere icmp destination-unreachable ACCEPT icmp -- anywhere anywhere icmp time-exceeded ACCEPT icmp -- anywhere anywhere icmp parameter-problem srcfilt all -- anywhere anywhere

Chain OUTPUT (policy DROP) target prot opt source destination ACCEPT all -- anywhere anywhere ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT icmp -- anywhere anywhere icmp destination-unreachable ACCEPT icmp -- anywhere anywhere icmp time-exceeded ACCEPT icmp -- anywhere anywhere icmp parameter-problem s1 all -- anywhere anywhere

Chain f0to1 (2 references) target prot opt source destination ACCEPT tcp -- anywhere anywhere tcp dpt:netbios-ns state NEW ACCEPT udp -- anywhere anywhere udp spts:1024:65535 dpt:netbios-ns ACCEPT udp -- anywhere anywhere udp spt:netbios-ns dpt:netbios-ns ACCEPT udp -- anywhere anywhere udp spts:1024:65535 dpt:netbios-dgm ACCEPT udp -- anywhere anywhere udp spt:netbios-dgm dpt:netbios-dgm ACCEPT tcp -- anywhere anywhere tcp dpt:netbios-ssn state NEW ACCEPT udp -- anywhere anywhere udp spts:1024:65535 dpt:netbios-ssn ACCEPT tcp -- anywhere anywhere tcp dpt:microsoft-ds state NEW ACCEPT icmp -- anywhere anywhere icmp source-quench ACCEPT tcp -- anywhere anywhere tcp spts:1024:65535 dpts:6881:6889 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:65535 dpt:ipp state NEW ACCEPT udp -- anywhere anywhere udp dpt:ipp ACCEPT tcp -- anywhere anywhere tcp spts:1024:65535 dpt:6969 state NEW ACCEPT udp -- anywhere anywhere udp spt:netbios-ns dpts:1024:5999 ACCEPT udp -- anywhere anywhere udp spt:netbios-ns dpt:netbios-ns ACCEPT udp -- anywhere anywhere udp spt:netbios-dgm dpt:netbios-dgm ACCEPT udp -- anywhere anywhere udp dpts:6970:7170 ACCEPT tcp -- anywhere anywhere tcp spts:1024:65535 dpts:1024:65535 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:65535 dpts:6881:6889 state NEW ACCEPT icmp -- anywhere anywhere icmp echo-reply logdrop all -- anywhere anywhere

Chain f1to0 (1 references) target prot opt source destination ACCEPT udp -- anywhere anywhere udp spt:netbios-ns dpts:1024:65535 ACCEPT udp -- anywhere anywhere udp spt:netbios-ns dpt:netbios-ns ACCEPT udp -- anywhere anywhere udp spt:netbios-dgm dpt:netbios-dgm ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpts:6881:6889 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:rsync state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:netbios-ns state NEW ACCEPT udp -- anywhere anywhere udp spts:1024:5999 dpt:netbios-ns ACCEPT udp -- anywhere anywhere udp spt:netbios-ns dpt:netbios-ns ACCEPT udp -- anywhere anywhere udp spts:1024:5999 dpt:netbios-dgm ACCEPT udp -- anywhere anywhere udp spt:netbios-dgm dpt:netbios-dgm ACCEPT tcp -- anywhere anywhere tcp dpt:netbios-ssn state NEW ACCEPT udp -- anywhere anywhere udp spts:1024:5999 dpt:netbios-ssn ACCEPT tcp -- anywhere anywhere tcp dpt:microsoft-ds state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:5050 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:telnet state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpts:5000:5001 state NEW ACCEPT udp -- anywhere anywhere udp spts:1024:5999 dpt:5000 ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:imaps state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:whois state NEW ACCEPT udp -- anywhere anywhere udp dpt:43 ACCEPT icmp -- anywhere anywhere icmp source-quench ACCEPT tcp -- anywhere anywhere tcp dpt:rtsp state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:7070 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:imap2 state NEW ACCEPT udp -- anywhere anywhere udp dpt:imap2 ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:ssh state NEW ACCEPT tcp -- anywhere anywhere tcp spts:0:1023 dpt:ssh state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpts:6660:6669 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:ftp state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:1755 state NEW ACCEPT udp -- anywhere anywhere udp dpt:1755 ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:hkp state NEW ACCEPT udp -- anywhere anywhere udp dpt:4000 ACCEPT tcp -- anywhere anywhere tcp spts:1024:65535 dpts:1024:65535 state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:ldap state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:522 state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:1503 state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:1720 state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:1731 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpts:1024:65535 state NEW ACCEPT udp -- anywhere anywhere udp spts:1024:5999 dpts:1024:65535 ACCEPT udp -- anywhere anywhere udp dpts:33434:33600 ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:smtp state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpts:6881:6889 state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:7741 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:ipp state NEW ACCEPT udp -- anywhere anywhere udp dpt:ipp ACCEPT tcp -- anywhere anywhere tcp dpt:gnutella-svc state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpts:5190:5193 state NEW ACCEPT udp -- anywhere anywhere udp spts:1024:5999 dpts:5190:5193 ACCEPT udp -- anywhere anywhere udp dpt:sip ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:pop3 state NEW ACCEPT udp -- anywhere anywhere udp dpt:3478 ACCEPT icmp -- anywhere anywhere icmp echo-request ACCEPT tcp -- anywhere anywhere tcp dpt:3030 state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:printer state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:1863 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:xmpp-client state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:5223 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:https state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:kerberos state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:8765 state NEW ACCEPT tcp -- anywhere anywhere tcp dpt:domain state NEW ACCEPT udp -- anywhere anywhere udp dpt:domain ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:6969 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:1723 state NEW ACCEPT gre -- anywhere anywhere ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:pop3s state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:dict state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:nntp state NEW ACCEPT udp -- anywhere anywhere udp dpt:ntp ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:ntp state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:www state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:webcache state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:8008 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:8000 state NEW ACCEPT tcp -- anywhere anywhere tcp spts:1024:5999 dpt:8888 state NEW logdrop all -- anywhere anywhere

Chain logaborted (1 references) target prot opt source destination logaborted2 all -- anywhere anywhere limit: avg 1/sec burst 10 LOG all -- anywhere anywhere limit: avg 2/min burst 1 LOG level warning prefix `LIMITED '

Chain logaborted2 (1 references) target prot opt source destination LOG all -- anywhere anywhere LOG level warning tcp-sequence tcp-options ip-options prefix `ABORTED ' ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED

Chain logdrop (4 references) target prot opt source destination logdrop2 all -- anywhere anywhere

Chain logdrop2 (1 references) target prot opt source destination DROP all -- anywhere anywhere

Chain logreject (0 references) target prot opt source destination logreject2 all -- anywhere anywhere

Chain logreject2 (1 references) target prot opt source destination REJECT tcp -- anywhere anywhere reject-with tcp-reset REJECT udp -- anywhere anywhere reject-with icmp-port-unreachable DROP all -- anywhere anywhere

Chain nicfilt (1 references) target prot opt source destination RETURN all -- anywhere anywhere RETURN all -- anywhere anywhere logdrop all -- anywhere anywhere

Chain s0 (1 references) target prot opt source destination f0to1 all -- anywhere localhost.localdomain f0to1 all -- anywhere 10.129.9.157 logdrop all -- anywhere anywhere

Chain s1 (1 references) target prot opt source destination f1to0 all -- anywhere anywhere

Chain srcfilt (2 references) target prot opt source destination s0 all -- anywhere anywhere

Ist es nur der ping der nicht geht oder funktioniert auch keine andere Kommunikation?

-- Jan Leonhardt

---

Lug-dd maillist - Lug-dd@mailman.schlittermann.de http://mailman.schlittermann.de/mailman/listinfo/lug-dd

______________________________________________________________________ XXL-Speicher, PC-Virenschutz, Spartarife & mehr: Nur im WEB.DE Club! Jetzt gratis testen! http://freemail.web.de/home/landingpad/?mc=021130