Re: 2.1.102: ipchains: REJECT does only DENY - network gurus please

Andi Kleen (ak@muc.de)
17 May 1998 14:23:37 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Ivan R. Judson: "Re: some tiny and dumb questions"
Previous message: Rogier Wolff: "Re: [PATCH] proposed addition of Documentation/bigmem.txt"
In reply to: Steffen Zahn: "Re: 2.1.102: ipchains: REJECT does only DENY - network gurus please"

Steffen Zahn <zahn@berlin.snafu.de> writes:

> Hello,
>
> with the problem of the new firewall code not doing REJECT correctly
> I have with the help of Paul Rusty Russell <Paul.Russell@rustcorp.com.au>
> now inserted numerous printks.
>
> The sequence is as follows:
>
> ipchains decides to REJECT an input packet
> ipfw_input_check returns -1 (FW_REJECT)
> call_in_firewall Returns -1 (FW_REJECT)
> ip_rcv calls icmp_send
> icmp_send returns after the
> if (ip_route_output(&rt, iph->saddr, saddr, RT_TOS(tos), 0))
> statement.
>
> No icmp message is send.

What it says - there is no output route for iph->saddr. Can you ping
192.168.0.2? What is the actual value of saddr/iph->saddr on this place?

-Andi

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu

Next message: Ivan R. Judson: "Re: some tiny and dumb questions"
Previous message: Rogier Wolff: "Re: [PATCH] proposed addition of Documentation/bigmem.txt"
In reply to: Steffen Zahn: "Re: 2.1.102: ipchains: REJECT does only DENY - network gurus please"