Hi, Friends Do you know if are there any module of kernel to work Oracle with NAT ,???? Newton. ----- Original Message ----- From: <nedco@unacs.bg> To: <netfilter@lists.netfilter.org> Sent: Wednesday, March 05, 2003 9:37 AM Subject: iptables dropping wrong packets > > > > Hi, > > looks like some of correct packes are droped > > Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) > num pkts bytes target prot opt in out source destination > > 1 36142 16M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 > TOS > match 0x00 > 2 168K 54M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 > TOS > match 0x10 > 3 27 1782 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 > LOG > flags 0 level 4 > 4 27 1782 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 > > > > in log we can see that TOS of packets is 0x0 they are also packets with 0x10 > > > > Mar 5 04:32:10 proliant kernel: IN=eth0 OUT=eth1 SRC=62.176.73.4 DST=62.176.105.30 > LEN=76 > TOS=0x00 PREC=0xC0 > Mar 5 04:32:15 proliant kernel: IN=eth0 OUT=eth1 SRC=62.176.73.4 DST=62.176.105.30 > LEN=76 > TOS=0x00 PREC=0xC0 > Mar 5 04:32:18 proliant kernel: IN=eth1 OUT=eth0 SRC=212.5.149.252 DST=212.5.134.3 > LEN=87 > TOS=0x00 PREC=0xC0 > Mar 5 04:32:19 proliant kernel: IN=eth0 OUT=eth2 SRC=62.176.73.4 DST=62.176.106.69 > LEN=88 > TOS=0x00 PREC=0xC0 > Mar 5 04:32:19 proliant kernel: IN=eth0 OUT=eth1 SRC=62.176.73.4 DST=62.176.105.30 > LEN=76 > TOS=0x00 PREC=0xC0 > Mar 5 04:32:29 proliant kernel: IN=eth0 OUT=eth2 SRC=195.230.9.159 DST=62.176.106.69 > LEN=48 > TOS=0x00 PREC=0x8 > Mar 5 04:32:31 proliant kernel: IN=eth0 OUT=eth1 SRC=62.176.73.4 DST=62.176.105.30 > LEN=76 > TOS=0x00 PREC=0xC0 > Mar 5 04:32:32 proliant kernel: IN=eth0 OUT=eth2 SRC=195.230.9.159 DST=62.176.106.69 > LEN=48 > TOS=0x00 PREC=0x8 > > Am I doing something wrong? > > 10x in advance > Nedko
