%-> next question: what ports to supply? I just allowed 1..65535
%-> but I'm not
%-> getting any pings through to my actual firewall. They seem to stop at
%-> the router. I'm verifying this by my firewall logs. Which
%-> contain icmp
%-> entires for the 4th, but not for the 5th. My logging rules haven't
%-> changed, therefore I suspect the router.
%->
%-> I'm suspecting the same of traceroute because I can't get that working
%-> either. For that, I've allowed udp ports 1..65535 as well.
%-> I'm getting
%-> confused as to why neither protocol is reaching my firewall.

I don't know, but when I tried opening up ICMP totally on the M10, I opened up 1 to 65535, pointing it to starting port 1, and it worked -- all ICMP got through. Haven't tried that on the MW1122 though.

Traceroute worked without any pinholes, however. I think you'll need to get ICMP messages back though, for it work. Try running it with the -v flag to see more detail.

-- Juha

This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to majordomo@unixathome.org
with "unsubscribe adsl" in the body of the message
Received on Tue Dec 5 13:57:10 2000