<html>
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
The simpliest way to debug issues like this is to add before your
'DROP' a 'LOG' rule :<br>
<br>
iptables -A FORWARD -p tcp --dport 80 -i eth0 -o eth1 -j LOG
--log-prefix 'DROPED '<br>
iptables -A FORWARD -p tcp --dport 80 -i eth0 -o eth1 -j DROP<br>
<br>
This way, every packets forwarded from eth0 to eth1 to a tcp port 80
will add en entry in your syslog.<br>
<br>
If your iptables default policy is set to DROP, then just add the
LOG rule at the end of the table definition, before the final drop.
Off course, you can do that in INPUT, OUTPUT and FORWARD tables.<br>
<br>
<a class="moz-txt-link-freetext" href="http://lmgtfy.com/?q=iptables+log+drop">http://lmgtfy.com/?q=iptables+log+drop</a><br>
<br>
Cya<br>
<br>
<div class="moz-cite-prefix">Le 10/05/13 17:49, noyfound a écrit :<br>
</div>
<blockquote
cite="mid:CACWK_NJrEftiUg2nW032WgUABh-gF73W2O4fzey+a9mOzNpA_Q@mail.gmail.com"
type="cite">
<div dir="ltr"><span
style="font-family:arial,sans-serif;font-size:13px">Hello,</span>
<div style="font-family:arial,sans-serif;font-size:13px"><br>
</div>
<div style="font-family:arial,sans-serif;font-size:13px">I have
faced some problems :</div>
<div style="font-family:arial,sans-serif;font-size:13px"><br>
</div>
<div style="font-family:arial,sans-serif;font-size:13px">1. With
iptables running i can't ping my tincvpn server but as i turn
it off i can. i have added all rules mentioned in examples but
no success.</div>
<div style="font-family:arial,sans-serif;font-size:13px"><br>
</div>
<div style="font-family:arial,sans-serif;font-size:13px">2. I
want to get internet access on the client which is a win 7
computer using tincVPN but i gained no success either (i can't
use bridges because server is a VPS using OpenVZ)</div>
<div style="font-family:arial,sans-serif;font-size:13px"><br>
</div>
<div style="font-family:arial,sans-serif;font-size:13px">so any
advice for solving this two problems is really appreciated</div>
<div style="font-family:arial,sans-serif;font-size:13px">
<br>
</div>
<div style="font-family:arial,sans-serif;font-size:13px"><b>Server
:</b></div>
<div style="font-family:arial,sans-serif;font-size:13px">OS :
centos 6.4 32bit</div>
<div style="font-family:arial,sans-serif;font-size:13px">
<br>
</div>
<div style="font-family:arial,sans-serif;font-size:13px"><b>tinc.conf
:</b></div>
<div style="font-family:arial,sans-serif;font-size:13px">
<div>Name = server</div>
<div>AddressFamily = ipv4</div>
<div>Interface = tun0</div>
<div><br>
</div>
<div><b>Client :</b></div>
<div>OS : win 7 x64</div>
<div><br>
</div>
<div><b>tinc.conf :</b></div>
<div>
<div>Name = client</div>
<div>AddressFamily = ipv4</div>
<div>Interface = mytinc</div>
<div>ConnectTo = server</div>
<div><br>
</div>
<div><b>Hosts files :</b></div>
<div><b>Server :</b></div>
<div>
<div>Address = 69.*.*.*</div>
<div>Subnet = <a moz-do-not-send="true"
href="http://10.0.0.1/32" target="_blank">10.0.0.1/32</a></div>
<div>== pubkey ==</div>
<div><br>
</div>
<div><b>Client :</b></div>
<div>Subnet = <a moz-do-not-send="true"
href="http://10.0.0.2/32" target="_blank">10.0.0.2/32</a><br>
</div>
<div>== pubkey ==</div>
</div>
</div>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
tinc mailing list
<a class="moz-txt-link-abbreviated" href="mailto:tinc@tinc-vpn.org">tinc@tinc-vpn.org</a>
<a class="moz-txt-link-freetext" href="http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc">http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc</a>
</pre>
</blockquote>
<br>
</body>
</html>