problema de nat en mi pc??
mauricio vargas
mauriciovargas en linuxmail.org
Jue Ene 20 14:01:26 CLST 2005
----- Original Message -----
From: "Eduardo Zamorano" <kiddiez en gmail.com>
>
> iptables -L -n
>
> manda a la lista su resultado.
>
linux:/home/visita # iptables -L -n
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED
LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 LOG flags 6 level 4 prefix `SFW2-IN-ILL-TARGET '
DROP all -- 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy DROP)
target prot opt source destination
Chain OUTPUT (policy DROP)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 11 LOG flags 6 level 4 prefix `SFW2-OUT-TRACERT-ATTEMPT '
DROP icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 11
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3 code 4
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3 code 9
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3 code 1 0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3 code 1 3
DROP icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 3
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED, ESTABLISHED
LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 LOG flags 6 level 4 prefix `SFW2-OUT-ERROR '
Chain forward_dmz (0 references)
target prot opt source destination
Chain forward_ext (0 references)
target prot opt source destination
Chain forward_int (0 references)
target prot opt source destination
Chain input_dmz (0 references)
target prot opt source destination
DROP all -- 0.0.0.0/0 0.0.0.0/0 PKTTYPE = broadcas t
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 11
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 12
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 14
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 18
LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 state INVALID LOG flags 6 level 4 prefix `SFW2-INdmz-DROP-DEFLT-INV '
DROP all -- 0.0.0.0/0 0.0.0.0/0 state INVALID
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 tcp flags:0x16/0x02 LOG flags 6 level 4 prefix `SFW2-INdmz-DROP-DEFLT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 4 LOG flags 6 level 4 prefix `SFW2-INdmz-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 5 LOG flags 6 level 4 prefix `SFW2-INdmz-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 8 LOG flags 6 level 4 prefix `SFW2-INdmz-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 13 LOG flags 6 level 4 prefix `SFW2-INdmz-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 17 LOG flags 6 level 4 prefix `SFW2-INdmz-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 2 LOG flags 6 level 4 prefix `SFW2-INdmz-DROP-ICMP-CRIT '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 LOG flags 6 level 4 prefix `SFW2-INdmz-DROP-DEFLT '
DROP all -- 0.0.0.0/0 0.0.0.0/0
Chain input_ext (0 references)
target prot opt source destination
DROP all -- 0.0.0.0/0 0.0.0.0/0 PKTTYPE = broadcas t
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 11
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 12
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 14
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 18
LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 state INVALID LOG flags 6 level 4 prefix `SFW2-INext-DROP-DEFLT-INV '
DROP all -- 0.0.0.0/0 0.0.0.0/0 state INVALID
reject_func tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:113 stat e NEW
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 tcp flags:0x16/0x02 LOG flags 6 level 4 prefix `SFW2-INext-DROP-DEFLT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 4 LOG flags 6 level 4 prefix `SFW2-INext-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 5 LOG flags 6 level 4 prefix `SFW2-INext-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 8 LOG flags 6 level 4 prefix `SFW2-INext-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 13 LOG flags 6 level 4 prefix `SFW2-INext-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 17 LOG flags 6 level 4 prefix `SFW2-INext-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 2 LOG flags 6 level 4 prefix `SFW2-INext-DROP-ICMP-CRIT '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 LOG flags 6 level 4 prefix `SFW2-INext-DROP-DEFLT '
DROP all -- 0.0.0.0/0 0.0.0.0/0
Chain input_int (0 references)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 4
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 3
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 11
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 12
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 14
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTA BLISHED icmp type 18
LOG all -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 state INVALID LOG flags 6 level 4 prefix `SFW2-INint-DROP-DEFLT-INV '
DROP all -- 0.0.0.0/0 0.0.0.0/0 state INVALID
LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 tcp flags:0x16/0x02 LOG flags 6 level 4 prefix `SFW2-INint-DROP-DEFLT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 4 LOG flags 6 level 4 prefix `SFW2-INint-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 5 LOG flags 6 level 4 prefix `SFW2-INint-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 8 LOG flags 6 level 4 prefix `SFW2-INint-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 13 LOG flags 6 level 4 prefix `SFW2-INint-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 17 LOG flags 6 level 4 prefix `SFW2-INint-DROP-ICMP-CRIT '
LOG icmp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 icmp type 2 LOG flags 6 level 4 prefix `SFW2-INint-DROP-ICMP-CRIT '
LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min b urst 5 LOG flags 6 level 4 prefix `SFW2-INint-DROP-DEFLT '
DROP all -- 0.0.0.0/0 0.0.0.0/0
Chain reject_func (1 references)
target prot opt source destination
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 reject-with tcp-re set
REJECT udp -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-p ort-unreachable
REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-p roto-unreachable
Por otra parte, Manuel Cano dijo que: "SuSE activa por defecto un software llamado PersonalFirewall que en
realidad son unas cuantas reglas de iptables". Eso debe estar modificando el paso de paquetes... Miré el yast, pero sólo vi servicio que activar...
Gracias.
Mauricio Vargas P.
Geólogo
MSc en Geología
Usurio Linux # 326558 http://counter.li.org
http://users.quickfox.org/~mauriciovargas/
--
______________________________________________
Check out the latest SMS services @ http://www.linuxmail.org
This allows you to send and receive SMS through your mailbox.
Powered by Outblaze
Más información sobre la lista de distribución Linux