[CentOS] CentOS 5.2 + iptables + memcached Problem
Art Age Software
artagesw at gmail.comFri Dec 12 23:10:02 UTC 2008
- Previous message: [CentOS] CentOS 5.2 + iptables + memcached Problem
- Next message: [CentOS] CentOS 5.2 + iptables + memcached Problem
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Thanks for your reply. I originally had stateful rules in place and packets were being dropped. I had just switched to stateless rules in an attempt to fix the problem. I will go back to stateful and update this thread with the new log messages. Thanks. Sam On Fri, Dec 12, 2008 at 2:33 PM, Filipe Brandenburger <filbranden at gmail.com> wrote: > Hi, > > On Fri, Dec 12, 2008 at 15:45, Art Age Software <artagesw at gmail.com> wrote: >> IPTABLES -A XXX -i bond0 -p tcp -m tcp -s 192.168.1.0/24 -d >> 192.168.1.0/24 --dport 11211 -j ACCEPT > >> Dec 12 20:33:53 s1 kernel: DROP -- Catch All: IN= OUT=bond0 >> SRC=192.168.1.1 DST=192.168.1.2 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 >> DF PROTO=TCP SPT=11211 DPT=47567 WINDOW=0 RES=0x00 RST URGP=0 > > The packages it's dropping are with *source* port 11211, they are the replies. > > Either configure your firewall in stateful mode (-m state, --state > NEW, --state ESTABLISHED, etc.) or add rules to allow the replies from > that source port. > > HTH, > Filipe > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos >
- Previous message: [CentOS] CentOS 5.2 + iptables + memcached Problem
- Next message: [CentOS] CentOS 5.2 + iptables + memcached Problem
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
More information about the CentOS mailing list