Mailinglist Archive: opensuse-security (670 mails)
| < Previous | Next > |
Access to some webservers through firewall
- From: Ralf Ronneburger <ralf@xxxxxxxxxxxxxx>
- Date: Mon, 26 Nov 2001 10:31:35 +0100
- Message-id: <3C020BF7.50806@xxxxxxxxxxxxxx>
Hello!
I have configured my firewall with iptables to basically let in only
answers on my requests, which works fine at about 95% of all webservers.
But when I'm trying to access some sites my firewall blocks the answers
like this:
Nov 26 10:04:18 internet kernel: DROP-TCP IN=ppp0 OUT= MAC=
SRC=213.83.13.35 DST=222.82.183.145 LEN=1490 TOS=0x00 PREC=0x00 TTL=54
ID=8559 DF PROTO=TCP SPT=80 DPT=1789 WINDOW=15972 RES=0x00 ACK URGP=0
which is correct, because I was trying to contact www.bahn.de
(213.83.12.10). I think that they have a load balancer who sent me to
that ip-address, but as my firewall did not open a connection there it
blocks the packages.
Any ideas what I can do about that? By the way, I had the same problem
with suse-firewall, too.
Best regards,
Ralf Ronneburger
I have configured my firewall with iptables to basically let in only
answers on my requests, which works fine at about 95% of all webservers.
But when I'm trying to access some sites my firewall blocks the answers
like this:
Nov 26 10:04:18 internet kernel: DROP-TCP IN=ppp0 OUT= MAC=
SRC=213.83.13.35 DST=222.82.183.145 LEN=1490 TOS=0x00 PREC=0x00 TTL=54
ID=8559 DF PROTO=TCP SPT=80 DPT=1789 WINDOW=15972 RES=0x00 ACK URGP=0
which is correct, because I was trying to contact www.bahn.de
(213.83.12.10). I think that they have a load balancer who sent me to
that ip-address, but as my firewall did not open a connection there it
blocks the packages.
Any ideas what I can do about that? By the way, I had the same problem
with suse-firewall, too.
Best regards,
Ralf Ronneburger
| < Previous | Next > |