Opened 13 years ago
Closed 13 years ago
#186 closed incident (fixed)
ProxyDeClercq geen internet
| Reported by: | huub | Owned by: | |
|---|---|---|---|
| Keywords: | Cc: | ||
| Location: | Generiek |
Description
ProxyDeClercq kan internet niet bereiken. De gateway kan ik pingen:
ProxyDeClercq# ping 213.125.162.249
PING 213.125.162.249 (213.125.162.249): 56 data bytes
64 bytes from 213.125.162.249: icmp_seq=0 ttl=64 time=1.474 ms
64 bytes from 213.125.162.249: icmp_seq=1 ttl=64 time=1.332 ms
maar een fetch van bijv. www.nu.nl geeft geen response, lokale nameserver werkt niet. Maar ook een ping op ip-adres werkt niet:
ProxyDeClercq# ping 8.8.8.8
PING 8.8.8.8 (8.8.8.8): 56 data bytes
ping: sendto: Operation not permitted
Change History (2)
comment:1 by , 13 years ago
comment:2 by , 13 years ago
| Resolution: | → fixed |
|---|---|
| Status: | new → closed |
Ook ProxyDeClercq had een oude pf.conf
Ik heb de pf.conf van ProxyLHS gekopieerd.
In de rc.conf.local stond ook 2x 'true' ipv 'yes'.
ProxyDeClercq werkt weer als 'ileiden' gateway.
Note:
See TracTickets
for help on using tickets.
zie ticket #187, ook hier:
ProxyDeClercq# pfctl -s rules
No ALTQ support in kernel
ALTQ related functions disabled
pass out on sis0 all flags S/SA keep state (source-track rule, max-src-states 10)
pass on lo0 all flags S/SA keep state
block drop in all
pass in on sis0 inet proto tcp from any to 213.125.162.254 port = ssh flags S/SA keep state
pass in on sis1 inet proto tcp from 172.16.0.0/12 to 172.16.4.54 port = ssh flags S/SA keep state
pass in on sis1 inet proto tcp from 172.16.0.0/12 to 172.16.4.54 port = domain flags S/SA keep state
pass in on sis1 inet proto udp from 172.16.0.0/12 to 172.16.4.54 port = domain keep state
pass in on sis1 inet proto tcp from any to any port = http flags S/SA keep state
pass in on sis1 inet proto tcp from any to any port = https flags S/SA keep state
pass in on sis1 inet proto icmp from 172.16.0.0/12 to 172.16.4.54 keep state
ProxyDeClercq#