From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-user+bounces-82477-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1KLlfs-0007KN-3l
	for garchives@archives.gentoo.org; Wed, 23 Jul 2008 21:15:04 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 5CAE0E03A8;
	Wed, 23 Jul 2008 21:15:02 +0000 (UTC)
Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.190])
	by pigeon.gentoo.org (Postfix) with ESMTP id 05E41E03A8
	for <gentoo-user@lists.gentoo.org>; Wed, 23 Jul 2008 21:15:01 +0000 (UTC)
Received: by nf-out-0910.google.com with SMTP id c7so6843503nfi.26
        for <gentoo-user@lists.gentoo.org>; Wed, 23 Jul 2008 14:15:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=gamma;
        h=domainkey-signature:received:received:from:reply-to:to:subject:date
         :user-agent:references:in-reply-to:mime-version:content-type
         :content-transfer-encoding:message-id;
        bh=Po+xP7QncD0jkSWFHW8yug4s3eWygAVLmPLcm8m02Ks=;
        b=ZNFsduVkeUAiS2oHKnI1zb1jCUWlU9BdJHKJOTD0mN3gbzsEyYYIWtt6JSGYYtMOkM
         XW4H0i928nURuTiDWuHEgeKhBGFoU7bJ4yMZLWgI/jbmg8NJMkkXDkxCYzmeuQBVM6b5
         XRipRkY/Tk6gRIvgs9xOUxPmXfjOm9DDhBP0A=
DomainKey-Signature: a=rsa-sha1; c=nofws;
        d=gmail.com; s=gamma;
        h=from:reply-to:to:subject:date:user-agent:references:in-reply-to
         :mime-version:content-type:content-transfer-encoding:message-id;
        b=BSeu83XCXkNJJUOGQv3bfbPiovpaCNYO9wigc6x+wI389LwtTSXnSk7q9yL67q99KU
         iSVaI0PxrkDubzmVPW4CycgE7s2FctXt2S/Z7bA6R8oLcEEmR+oMUOqfnvJfVhAXpBCv
         XYGjkMS1vCKBhNfCgVSdDilStJ8MPgwIhzjeY=
Received: by 10.210.89.4 with SMTP id m4mr252281ebb.21.1216847701196;
        Wed, 23 Jul 2008 14:15:01 -0700 (PDT)
Received: from lappy.study ( [212.159.46.48])
        by mx.google.com with ESMTPS id 35sm14443307nfu.4.2008.07.23.14.14.58
        (version=TLSv1/SSLv3 cipher=RC4-MD5);
        Wed, 23 Jul 2008 14:15:00 -0700 (PDT)
From: Mick <michaelkintzios@gmail.com>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user]  Re: Curious ping problem with no FW
Date: Wed, 23 Jul 2008 22:14:54 +0100
User-Agent: KMail/1.9.9
References: <87lk044bki.fsf@newsguy.com> <200807201658.29960.michaelkintzios@gmail.com> <87ej5mj6ee.fsf@newsguy.com>
In-Reply-To: <87ej5mj6ee.fsf@newsguy.com>
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Content-Type: multipart/signed;
  boundary="nextPart3049340.M9LE8fUHOC";
  protocol="application/pgp-signature";
  micalg=pgp-sha1
Content-Transfer-Encoding: 7bit
Message-Id: <200807232214.56647.michaelkintzios@gmail.com>
X-Archives-Salt: 94633a6c-17c9-461d-adfe-bcf5cac17238
X-Archives-Hash: 6bb76b1cb1cbd7b269e3f12af7056de8

--nextPart3049340.M9LE8fUHOC
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

On Tuesday 22 July 2008, Harry Putnam wrote:
> Mick <michaelkintzios@gmail.com> writes:

> > It may be worth checking your router's firewall rules once more.  Is the
> > gentoo box connected to the router in the same fashion as the MSWindows
> > boxen, or is it in some funny DMZ set up?
>
> The section involving blocking has nothing whatever set.

OK, but is NATing configured the same way for both Linux & MS Windows=20
machines?

> > What do the firewall logs show?
>
> Since there is nothing outgoing set to log, it says nothing.

Does your router give you the option to log outgoing packets, or monitor th=
em=20
in real time?

> Here I see:
>   sysctl -a|grep 'net.*icmp'
>
>   net.ipv4.icmp_echo_ignore_all =3D 0

That's how it should be if you want your Linux box to respond to pings.

>   net.ipv4.icmp_echo_ignore_broadcasts =3D 1
>   net.ipv4.icmp_ignore_bogus_error_responses =3D 1
>   net.ipv4.icmp_errors_use_inbound_ifaddr =3D 0
>   net.ipv4.icmp_ratelimit =3D 250
>   net.ipv4.icmp_ratemask =3D 6168

Nothing amiss here either.

Have you tried going back to basics:  unplug the MSWindows box from your=20
router and plug your Linux box in the same port to see if you can ping=20
internet addresses.

Can you ping the IP address of ftp.ucsb.edu; i.e. 128.111.24.43 (although I=
=20
would expect that if your linux had DSN problems you wouldn't be able to=20
browse from it altogether.

What does traceroute show and how does this compare with traceroute -T?=20
=2D-=20
Regards,
Mick

--nextPart3049340.M9LE8fUHOC
Content-Type: application/pgp-signature; name=signature.asc 
Content-Description: This is a digitally signed message part.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)

iEYEABECAAYFAkiHn1AACgkQ5Fp0QerLYPe62wCguMEnEpr6q053wprvu0UiVm6e
5HIAn2U4DQy5WmJlQ/bynHgZTP4ZtWUo
=Klde
-----END PGP SIGNATURE-----

--nextPart3049340.M9LE8fUHOC--