[WL::Techniek] [nodefactory] #59: test of nodehuub: no routing no nameservice for users

'WL Trac' noreply at wirelessleiden.nl
Wed Aug 12 22:25:57 CEST 2009


#59: test of nodehuub: no routing no nameservice for users
---------------------+------------------------------------------------------
 Reporter:  huub     |       Owner:  nobody
     Type:  defect   |      Status:  new   
 Priority:  major    |   Milestone:        
Component:  general  |     Version:        
 Keywords:           |   Resources:        
---------------------+------------------------------------------------------

Comment(by huub):

 Replying to [comment:3 huub]:
 > I checked the firewall rules introduced for the captive portal feature:
 >
 > CNodeHuub# ipfw list
 > 00100 allow ip from any to any via lo0
 > 00200 deny ip from any to 127.0.0.0/8
 > 00300 deny ip from 127.0.0.0/8 to any
 > 10000 allow tcp from any to 127.0.0.1 dst-port 80
 > 10001 allow tcp from any to me dst-port 80
 > 10100 fwd 172.16.1.38,8081 tcp from any to not 172.16.0.0/12 dst-port 80
 > 10100 fwd 172.17.16.65,8081 tcp from any to not 172.16.0.0/12 dst-port
 80
 > 10100 fwd 172.16.3.21,8081 tcp from any to not 172.16.0.0/12 dst-port 80
 > 10100 fwd 127.0.0.1,8081 tcp from any to not 172.16.0.0/12 dst-port 80
 > 10100 fwd 172.31.255.1,8081 tcp from any to not 172.16.0.0/12 dst-port
 80
 > 10100 fwd 172.16.0.14,8081 tcp from any to not 172.16.0.0/12 dst-port 80
 > 10100 fwd 172.17.16.1,8081 tcp from any to not 172.16.0.0/12 dst-port 80
 > 65000 allow ip from any to any
 > 65535 allow ip from any to any

 If I flush the rules routing works OK:
 CNodeHuub# ipfw -q -f flush
 CNodeHuub# ipfw list
 65535 allow ip from any to any

 and now from a local pc I can ping NodeVosko1:
 bash-3.2$ ping 172.174.1.1
 PING 172.174.1.1 (172.174.1.1) 56(84) bytes of data.
 64 bytes from 172.174.1.1: icmp_seq=1 ttl=107 time=20.8 ms
 etc.

 So the packet filtering is clearly causing the problem.

-- 
Ticket URL: <http://www.wirelessleiden.nl/projects/nodefactory/ticket/59#comment:4>
nodefactory <http://www.wirelessleiden.nl/projects/nodefactory>
Wireless Leiden Node Factory


More information about the Techniek mailing list