11-14-2002
This is my ipchains.rules file:
:input ACCEPT
:forward ACCEPT
:output ACCEPT
:icmp -
-A input -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 -p 1 -j icmp
-A input -s 0.0.0.0/0.0.0.0 443:443 -d 0.0.0.0/0.0.0.0 -p 6 -j DENY -l -y
-A input -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 443:443 -p 6 -j DENY -l -y
-A input -s 0.0.0.0/0.0.0.0 443:443 -d 0.0.0.0/0.0.0.0 -p 17 -j DENY -l
-A input -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 443:443 -p 17 -j DENY -l
-A input -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 -p 6 -j ACCEPT ! -y
-A icmp -s 0.0.0.0/0.0.0.0 3:3 -d 0.0.0.0/0.0.0.0 -p 1 -j ACCEPT
-A icmp -s 0.0.0.0/0.0.0.0 4:4 -d 0.0.0.0/0.0.0.0 -p 1 -j ACCEPT
-A icmp -s 0.0.0.0/0.0.0.0 11:11 -d 0.0.0.0/0.0.0.0 -p 1 -j ACCEPT
-A icmp -s 0.0.0.0/0.0.0.0 12:12 -d 0.0.0.0/0.0.0.0 -p 1 -j ACCEPT
-A icmp -s 0.0.0.0/0.0.0.0 -d 0.0.0.0/0.0.0.0 -j DENY
Which line could be blocking the ping?
disabled smilies --oombera
Last edited by oombera; 02-20-2004 at 04:07 PM..
10 More Discussions You Might Find Interesting
1. AIX
Hey all. I have a long list of IP addresses I want to ping. The IP's are located in a flat file "ping_info.dat".
I was wondering what the best way to go about this would be. Can someone help me out? (2 Replies)
Discussion started by: jalge2
2 Replies
2. Shell Programming and Scripting
Hi,
How to ping an ip from an unix machine. Can you please let me know the exact command. I used and i got the below error
ping 171.18.17.2
bash: ping: command not found
Thanks n regards
Ammu (1 Reply)
Discussion started by: ammu
1 Replies
3. Shell Programming and Scripting
Keep in mind that I haven't done Perl scripting for a LONG time, so I'm quite rusty.
This is what I would like to do:
- using fork, create 3 or 4 processes to read 3 or 4 different text documents containing server names or IP addresses
- in each of those processes, Perl will ping each of those... (7 Replies)
Discussion started by: kooshi
7 Replies
4. Solaris
Dear all,
I face some problem as below.
I have a sun fire 280r server in a network. From that server i am able to ping any system in any network. But i am facing the problem when i try to ping the server from outside netwok. Once i give ping command in the server then only i try to... (1 Reply)
Discussion started by: sudhansu
1 Replies
5. UNIX for Dummies Questions & Answers
Hi,
I don't have a lot of info, so I'm sure this is a long shot. But figured I'd check to see if this issue rings a bell with anyone.
Two weeks ago a Unix server stopped updating the date. So everyday it shows the same system time. It's been manually changed to the correct date, but then... (2 Replies)
Discussion started by: no_clue
2 Replies
6. Shell Programming and Scripting
how can you ping a domain and store the ip?
like given a url in a variable $url
how can i ping it?
also how can i find the local server's ip address on a cpanel server?
(i have multiple servers and didnt want to hard code it in)
(basically i want to check the domain accounts on the server,... (11 Replies)
Discussion started by: vanessafan99
11 Replies
7. IP Networking
Hi,
I have a rather strange IP question...
Here's my problem:
I have a Linux box (call it "turing") with 2 NICs.
One network interface (eth0) has an IP assigned, say 192.168.42.50.
The other interface (eth1) is up, but has no IP yet.
My question: is it possible to determine from... (3 Replies)
Discussion started by: NH2
3 Replies
8. UNIX Desktop Questions & Answers
I need to ping websites and I need to see which one has the highest delay.
My problem is I need to extract the name Facebook and the time=74.0 ms using awk. I need help doing this please...
PING facebook.com (173.252.90.36) 56(84) bytes of data.
64 bytes from... (5 Replies)
Discussion started by: 5sku5
5 Replies
9. Emergency UNIX and Linux Support
Hi,
I need to set up a script that would write the results of the ping command from one AIX server to another file may be every minute. Like this I need to gather the data for a period of 24 hours.
Can someone please help me with this?
G (5 Replies)
Discussion started by: ggayathri
5 Replies
10. HP-UX
Hi,
A database (Oracle) replication process was executed by the DBA team in one server (serverX). However, this replication process gets terminated, and there are no errors in the replication log. But there is error in the OS log files (syslog.log) :
Aug 8 16:51:47 L28dre02 sshd: subsystem... (1 Reply)
Discussion started by: anaigini45
1 Replies
LEARN ABOUT SUSE
tnm::icmp
icmp(n) Tnm Tcl Extension icmp(n)
__________________________________________________________________________________________________________________________________________________
NAME
icmp - Send ICMP messages to hosts on the Internet.
_________________________________________________________________
DESCRIPTION
The icmp command allows to send Internet Control Messages (ICMP) (RFC 792, RFC 1122) to a list of hosts on the Internet. ICMP messages can
be used to check whether hosts are reachable. The icmp command can also be used to trace routes to Internet hosts by sending UDP datagrams
to unused UDP ports and interpreting the ICMP responses (Van Jacobsen and Steve Deering algorithm).
ICMP COMMAND
The icmp command always accepts a list of target hosts. ICMP messages are send to the targets in a round-robin fashion which allows to
check entire IP address ranges or a list of core routers efficiently. The user of the icmp command should be careful not to flood a network
with ICMP requests.
icmp [options]
Invoking the icmp command with options but without any command arguments allows to retrieve and change the default values. See the
description of supported options below. Default values are bound to a Tcl interpreter which allows to have multiple Tcl interpreter
with different defaults.
icmp [options] echo hosts
The icmp echo command can be used to test the reachability of IP devices by sending ICMP echo requests to the hosts. The command
returns a list of host / round trip time pairs. The round trip time is returned in milliseconds. A negative round trip time indi-
cates that a host did not respond in the timeout interval.
icmp [options] mask hosts
The icmp mask command sends ICMP mask requests and returns a list of host / netmask pairs. The mask will be set to 0.0.0.0 if a host
does not respond to ICMP mask requests.
icmp [options] timestamp hosts
The icmp timestamp command retrieves timestamps using the ICMP timestamp request. This command returns an estimate of the time dif-
ference between local time and the time on the hosts given in hosts. The command returns a list of host / time offset pairs. The
time offset is returned in milliseconds. An empty time offset indicates that a host did not respond in the timeout interval.
icmp [options] ttl num hosts
The icmp ttl command, which may not be supported on every operating system, sends a UDP packet to an unused port number with the
time to live field of the IP header set to num. This command returns a list of host / round trip time pairs, where the host is the
IP device being num hops away. The round trip time is returned in milliseconds. A negative round trip time indicates that a host did
not respond in the timeout interval.
icmp [options] trace num hosts
The icmp trace command works similar to the icmp ttl command but it always returns the destination address even when the responding
host chooses another interface with a different IP address to send the reply. This can be used to trace a route to a host since the
command returns the host that discards the packet if it does not reach the destination.
ICMP OPTIONS
The following options control how ICMP requests are send and how the icmp command deals with lost ICMP packets.
-timeout time
The -timeout option defines the time the icmp command will wait for a response. The time is defined in seconds with a default of 5
seconds.
-retries number
The -retries option defines how many times a request is retransmitted during the timeout interval. The default number of retries is
2.
-delay time
The -delay option defines the minimum delay between two outgoing ICMP packets. The delay time is defined in milliseconds with a
default delay of 0 milliseconds. Delays are useful to reduce the load on intermediate devices like gateways or bridges.
-size number
The -size option allows to control the size of ICMP packets. The number defines the size of ICMP packets in bytes with a default
size of 64 bytes. Sizes smaller than 64 bytes are silently rounded to 64 bytes.
BUGS
The icmp command requires the setuid root program ntping(8) because sending icmp packets requires access to raw sockets on most operating
systems.
SEE ALSO
scotty(1), ntping(8), Tnm(n), Tcl(n)
AUTHORS
Juergen Schoenwaelder <schoenw@cs.utwente.nl>
Tnm icmp(n)