-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 31 Oct 2002 18:06:36 -0600, Alejandro González Hernández - Imoq wrote: > On Thu, 2002-10-31 at 17:29, Dale Bewley wrote: > > > Well, you didn't put in default deny policies and logging of packets > > that hit the end like I suggested. If you did, I'm guessing you > > might see the pkts coming from the windows http server being denied. > > Something is keeping those Acks from getting back to the client. And > > it is either 1. the windows box is not sending packets back to the > > router (you can check with tcpdump) or 2. the router is not > > forwarding the Acks back to the client. > > Dale: > > I did put the default deny policies; the lines that I pasted in my > previous e-mail were only samples (relevant parts?) of the iptables > configuration, not the whole file. You did put default deny policies??? Then you can forget about trying to get it right. Please go back to one of my early replies where I mentioned you would need a rule in the FORWARD chain to accept outgoing traffic to your LAN unless your default policy is ACCEPT. And your example of /etc/sysconfig/iptables *did* contain ACCEPT default policies. I'd like to see the full output of "iptables-save". - -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) iD8DBQE9wjKJ0iMVcrivHFQRAtWJAJ9pW5dxdVVPEkpnzpOx+l54F0AeDQCeM372 W/E9l19kFmCa+4WluorpaOQ= =KBDF -----END PGP SIGNATURE----- -- Psyche-list mailing list Psyche-list@redhat.com https://listman.redhat.com/mailman/listinfo/psyche-list
