On Tue, Jun 26, 2007 at 08:52:14 +0100 (+0100), Adrian Bridgett wrote:
> On Fri, Jun 22, 2007 at 16:27:55 +0100 (+0100), Jack Knight wrote:
> > I suspect the fact that ping 127.0.0.1 results in "ping: sendto:
> > permission denied" may have something to do with it. Both the eth0 wired
For the record this turned out to be due to the NATing - the
"POSTROUTING" filter was set up like this:
(iptables -t mangle -L -n -v)
Chain POSTROUTING (policy DROP 8554 packets, 7522K bytes)
pkts bytes target prot opt in out source destination
1540 99203 MASQUERADE 0 -- * eth1 0.0.0.0/0 0.0.0.0/0
Due to that policy of "DROP":
- masquerade anything going out of eth1
- or drop it
so anything going out of lo or eth0 etc will be dropped.
The fix being to change the policy:
iptables -t nat -P POSTROUTING ACCEPT
Adrian
--
Email: adrian@??? -*- GPG key available on public key servers
Debian GNU/Linux - the maintainable distribution -*-
www.debian.org
Avoid working with children, animals and Microsoft "operating" systems
