I have an application that Needs to run behind the firewall...
It is a UDP app and worked with RedHat5.2 (with ipchains 1.3.8,
27-Oct-1998)
Finally I convinced the powers that be to purchase another system and run
RH6.2 or 7.1.
So I installed 7.1 (with iptables) and the most important Internet app did
not work properly.
This is the tcpdump log excerpt
05:11:03.262982 > fubar.com >
intnj6.ilx.net: icmp: sierra.rtjones.com udp port 61027 unreachable
Offending pkt: intnj6.ilx.net.7323 > fubar.com.61027: udp 42
(DF) (ttl 54, id 53162) [tos 0xc0] (ttl 255, id 156)
I installed RH6.2 and the same problem persisted.
So I finally saved ipchains1.3.9 and compiled and installed 1.3.8 and the
app worked again....
This is the streaming quotes app.... successful tcpdump sample packet.
external NIC
17:31:37.611997 intnj6.ilx.net.7323 > fubar.com.61027: udp 42
(DF) (ttl 54, id 5667)
Internal NIC:
17:31:37.612057 intnj6.ilx.net.7323 > 192.168.0.74.4900: udp 42 (DF) (ttl
53, id 5667)
I am not a programmer... but what else is needed to fix this? Because
eventually I would like to install RH7.1 with iptables.
As far as the rules go.... I had them wide open to test. And used the
same rules with both versions of ipchains...
I would be happy to provide more info....
Tony
--
Tony Zafiropoulos
CTiTEK, Inc.
Supporting Linux one system at a time
Ph: 314-726-5080 x101
Fax: 314-726-5085
Cel: 314-504-3974
tonyz@ctitek.com
"Nearly all men can stand adversity, but if you want to test a man's character
give him power."
-- Abraham Lincoln
It is a UDP app and worked with RedHat5.2 (with ipchains 1.3.8,
27-Oct-1998)
Finally I convinced the powers that be to purchase another system and run
RH6.2 or 7.1.
So I installed 7.1 (with iptables) and the most important Internet app did
not work properly.
This is the tcpdump log excerpt
05:11:03.262982 > fubar.com >
intnj6.ilx.net: icmp: sierra.rtjones.com udp port 61027 unreachable
Offending pkt: intnj6.ilx.net.7323 > fubar.com.61027: udp 42
(DF) (ttl 54, id 53162) [tos 0xc0] (ttl 255, id 156)
I installed RH6.2 and the same problem persisted.
So I finally saved ipchains1.3.9 and compiled and installed 1.3.8 and the
app worked again....
This is the streaming quotes app.... successful tcpdump sample packet.
external NIC
17:31:37.611997 intnj6.ilx.net.7323 > fubar.com.61027: udp 42
(DF) (ttl 54, id 5667)
Internal NIC:
17:31:37.612057 intnj6.ilx.net.7323 > 192.168.0.74.4900: udp 42 (DF) (ttl
53, id 5667)
I am not a programmer... but what else is needed to fix this? Because
eventually I would like to install RH7.1 with iptables.
As far as the rules go.... I had them wide open to test. And used the
same rules with both versions of ipchains...
I would be happy to provide more info....
Tony
--
Tony Zafiropoulos
CTiTEK, Inc.
Supporting Linux one system at a time
Ph: 314-726-5080 x101
Fax: 314-726-5085
Cel: 314-504-3974
tonyz@ctitek.com
"Nearly all men can stand adversity, but if you want to test a man's character
give him power."
-- Abraham Lincoln