[Firehol-support] Strange problem...

Costa Tsaousis costa at tsaousis.gr
Wed Dec 17 02:41:40 GMT 2008


Sim wrote:
> I do not know if it is a similar problem, but I find this log in
> another server (like others Ubuntu 8.04 Server with Firehol)
>
> Dec 14 17:06:22 lan kernel: [353715.165114] 'PASS-unknown:'IN=eth1
> OUT=ppp0 SRC=192.168.0.200 DST=72.32.64.173 LEN=40 TOS=0x00 PREC=0x00
> TTL=127 ID=27356 DF PFIN URGP=0
> Dec 14 17:06:39 lan kernel: [353732.093909] 'PASS-unknown:'IN=eth1
> OUT=ppp0 SRC=192.168.0.200 DST=72.32.64.173 LEN=40 TOS=0x00 PREC=0x00
> TTL=127 ID=27585 DF PFIN URGP=0
> Dec 14 17:07:13 lan kernel: [353765.624012] 'PASS-unknown:'IN=eth1
> OUT=ppp0 SRC=192.168.0.200 DST=72.32.64.173 LEN=40 TOS=0x00 PREC=0x00
> TTL=127 ID=27652 DF PFIN URGP=0
> Dec 14 17:20:20 lan kernel: [354552.107523] 'PASS-unknown:'IN=eth1
> OUT=ppp0 SRC=192.168.0.200 DST=72.32.64.173 LEN=40 TOS=0x00 PREC=0x00
> TTL=127 ID=32555 DF PFIN URGP=0
>   
These packets are not TCP, nor UDP. I don't know what they are...
> Why "PASS-unknown"  ?
>   
Routers in firehol have the default policy RETURN. For this reason, 
firehol cannot know to which router a packet that did not matched was 
supposed to belong. So for all routed traffic, firehol reports 
'PASS-unknown'.


> I have also tried with:
>
>   
>>> iptables -t mangle -o "ppp+" --insert FORWARD 1 -p tcp --tcp-flags SYN,RST SYN -m tcpmss --mss 1400:1536 -j TCPMSS --clamp-mss-to-pmtu
>>>       
>
> or
>
>   
>>> tcpmss auto
>>>       
>
> without resolutions.
>
>   
These affect TCP communication. Your packets are not TCP.

Costa





More information about the Firehol-support mailing list