cvs problem with iptables

Ankush Grover ankush174 at gmail.com
Thu Aug 18 09:19:14 UTC 2005 

> Send in tcpdump
> 
> tcpdump
> 
> to see what is not making it through iptables.  If you get a ton of junk
> obscuring the cvs traffic, use syntax like this (this example will filter out
> ssh-related traffic from the tcpdump report)
> 
> tcpdump not port 22
> 
> It is much much better to see everything and filter out the bad rather than
> make assumptions about what is to be seen and ask only to see that.... ie,
> this would not be a good idea:
> 
> tcpdump port 2401 and port 2402

When I ran this tcpdump port 2401 and port 2402 it catched
nothing.Then I ran only tcpdump
This is what I get with tcpdump

P jyotsna.sunupdelhi.net.2022 > linux.sunupdelhi.net.cvspserver: S
1071826300:1071826300(0) win 65535 <mss 1460,nop,nop,sackOK>
14:35:51.661234 IP linux.sunupdelhi.net > jyotsna.sunupdelhi.net: icmp
56: host linux.sunupdelhi.net unreachable - admin prohibited
14:35:51.660460 IP linux.sunupdelhi.net.32958 >
server1.sunupdelhi.net.domain:  21749+ PTR? 62.1.168.192.in-addr.arpa.
(43)
14:35:51.660700 arp who-has linux.sunupdelhi.net tell server1.sunupdelhi.net
14:35:51.660722 arp reply linux.sunupdelhi.net is-at 00:0e:a6:1b:f7:1a
14:35:51.660815 IP server1.sunupdelhi.net.domain >
linux.sunupdelhi.net.32958:  21749* 1/0/0 (79)
14:35:51.661568 IP linux.sunupdelhi.net.32958 >
server1.sunupdelhi.net.domain:  46968+ PTR?
100.1.168.192.in-addr.arpa. (44)
14:35:51.661701 IP server1.sunupdelhi.net.domain >
linux.sunupdelhi.net.32958:  46968* 1/0/0 (80)
14:35:54.625004 IP jyotsna.sunupdelhi.net.2022 >
linux.sunupdelhi.net.cvspserver: S 1071826300:1071826300(0) win 65535
<mss 1460,nop,nop,sackOK>
14:35:54.625076 IP linux.sunupdelhi.net > jyotsna.sunupdelhi.net: icmp
56: host linux.sunupdelhi.net unreachable - admin prohibited
14:35:56.643175 arp who-has jyotsna.sunupdelhi.net tell linux.sunupdelhi.net
14:35:56.643287 arp reply jyotsna.sunupdelhi.net is-at 00:02:e3:2f:21:d2
14:35:56.660191 arp who-has server1.sunupdelhi.net tell linux.sunupdelhi.net
14:35:56.660310 arp reply server1.sunupdelhi.net is-at 00:0b:cd:e2:63:5d
14:36:00.640501 IP jyotsna.sunupdelhi.net.2022 >
linux.sunupdelhi.net.cvspserver: S 1071826300:1071826300(0) win 65535
<mss 1460,nop,nop,sackOK>
14:36:00.640593 IP linux.sunupdelhi.net > jyotsna.sunupdelhi.net: icmp
56: host linux.sunupdelhi.net unreachable - admin prohibited


Thanks & Regards

Ankush Grover

More information about the fedora-list mailing list