[TriLUG] Cipe & iptables
Chuck Mead
csm at MoonGroup.com
Sun Dec 23 22:04:18 EST 2001
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sun, 23 Dec 2001, Kevin - The Alchemist - Sonney posted the following:
KTAS>On Sun, Dec 23, 2001 at 09:16:01PM -0500, Chuck Mead spoke thusly:
KTAS>> Has anybody gotten cipe to run with an iptables firewall?
KTAS>
KTAS>I've been playig with CIPE, and it either ahtes my network, or it
KTAS>really hates running on a firewalled host.
KTAS>
KTAS>I expect it to work fine as long as traffic to/from the port(s) is
KTAS>allowed fmr the host(s) in question. In my case, it's trickier :
KTAS>
KTAS>CIPE server -> Inet -> ISDN Router -> NAT -> firewall w/CIPE
KTAS>
KTAS>And I think the NAT screws with it somewhat, since I get connections
KTAS>but no pings across the CIPE interface. But that's OK - I'll either
KTAS>get "real" bandwidth before I die, or just put an ISDN card in the
KTAS>firewall and drop the NAT someday. *grin*
Well... I've tried it from a laptop behind an iptables firewall to a
stand alone host on the net and it does not work and I've tried it from
the firewall itself to the same stand alone host and it does not work
there either. I was hoping it would work from the laptop but it looks to
me as though it won't work from anywhere. A thorugh (2 day long) search
of the net suggests there are issues with Cipe and iptables.
- --
csm
Dmitry is free!
Boycott Adobe!
Repeal the DMCA!
Stop the SSSCA!
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iEYEARECAAYFAjwmmzQACgkQv6Gjsf2pQ0rX/ACfVy6L4EmjHwwd6tOb+kHTt7q9
DAsAniC+56yyVtc+Qxq96hypruGHtfXr
=BRPS
-----END PGP SIGNATURE-----
More information about the TriLUG
mailing list