Hello Chris, Saturday, August 2, 2003, 3:28:14 PM, you wrote: CW> Hello netfilter_user, >> BUT: the problem is when MRTG try to receive SNMP information from this >> same machine that is installed ( MRTG is installed on Linux machine - >> gateway). I dont know why because i set: iptables -A INPUT -i eth1 -p tcp -m multiport --dport 21,80,161,3128 -j ACCEPT >> iptables -A INPUT -i eth1 -p udp -m multiport --dport 80,67,161 -j ACCEPT >> ...and it should resolve problem...but >> it wont >> >> !!!!!THIS IS IMPORTANT!!!! >> when I set all INPUT ACCETP then it works. So there is no problem with >> snmp and MRTG but with my iptables config :/ CW> The kernel will route packets for the local machine over the "lo" device, CW> not any ethernet interface. You haven't allowed packets in from the "lo" CW> device, which is why SNMP (and probably other things such as pinging CW> yourself) won't work. CW> iptables -I INPUT -i lo -j ACCEPT CW> Cheers, Chris. Wise advice... ofcourse it helped. Thanks alot. -- Best regards, mailto:netfilter_user@xxxxx
