[Techtalk] Re: IP Masq (Was DNS & IP Masq)

Berenice showercurtain2000 at yahoo.com
Fri Mar 21 19:27:30 EST 2003 

On Fri 21 March, Malcolm wrote:
If you have masquerading turned on and the above IP address really is
a typo, let us know. And can you also post the output of iptables -L
and iptables -t nat -L at the same time?

Hi Malcolm,

Yes my sister's IP address is a typo and should be 192.168.0.2 :D
IP masquerading is turned on and the output of iptables -L and
iptables -t nat -L is listed below.  

cheers
Berenice


####################################################################

[root at localhost root]# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
RH-Lokkit-0-50-INPUT  all  --  anywhere             anywhere

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Chain RH-Lokkit-0-50-INPUT (1 references)
target     prot opt source               destination
ACCEPT     udp  --  sy-dns04.tmns.net.au  anywhere           udp
spt:domain dpts
:1025:65535
ACCEPT     udp  --  sy-dns03.tmns.net.au  anywhere           udp
spt:domain dpts
:1025:65535
ACCEPT     tcp  --  anywhere             anywhere           tcp
dpt:smtp flags:S
YN,RST,ACK/SYN
ACCEPT     tcp  --  anywhere             anywhere           tcp
dpt:http flags:S
YN,RST,ACK/SYN
ACCEPT     tcp  --  anywhere             anywhere           tcp
dpt:ssh flags:SY
N,RST,ACK/SYN
ACCEPT     udp  --  anywhere             anywhere           udp
spts:bootps:boot
pc dpts:bootps:bootpc
ACCEPT     udp  --  anywhere             anywhere           udp
spts:bootps:boot
pc dpts:bootps:bootpc
ACCEPT     all  --  anywhere             anywhere
REJECT     tcp  --  anywhere             anywhere           tcp
dpts:0:1023 flag
s:SYN,RST,ACK/SYN reject-with icmp-port-unreachable
REJECT     tcp  --  anywhere             anywhere           tcp
dpt:nfs flags:SY
N,RST,ACK/SYN reject-with icmp-port-unreachable
REJECT     udp  --  anywhere             anywhere           udp
dpts:0:1023 reje
ct-with icmp-port-unreachable
REJECT     udp  --  anywhere             anywhere           udp
dpt:nfs reject-w
ith icmp-port-unreachable
REJECT     tcp  --  anywhere             anywhere           tcp
dpts:x11:6009 fl
ags:SYN,RST,ACK/SYN reject-with icmp-port-unreachable
REJECT     tcp  --  anywhere             anywhere           tcp
dpt:xfs flags:SY
N,RST,ACK/SYN reject-with icmp-port-unreachable

#####################################################################

[root at localhost root]# iptables -t nat -L
Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

#####################################################################

__________________________________________________
Do you Yahoo!?
Yahoo! Platinum - Watch CBS' NCAA March Madness, live on your desktop!
http://platinum.yahoo.com

More information about the Techtalk mailing list