[ProgSoc] Getting ipsec-tools to work between Ubuntu Lucid hosts

James Andrewartha jamesa at daa.com.au
Fri Jul 29 12:21:30 EST 2011


On 29/07/11 08:41, John Elliot wrote:
> 
> I'm getting these in my /var/log/debug log file:
> 
> Jul 29 00:21:47 charity kernel: [  576.874805] iptables debug: IN=eth0
> OUT= MAC=40:40:b3:fc:05:28:00:18:8b:f9:70:05:08:00 SRC=67.207.130.204
> DST=67.207.128.184 LEN=64 TOS=0x00 PREC=0x00 TTL=63 ID=6047 DF PROTO=TCP
> SPT=22 DPT=36003 WINDOW=362 RES=0x00 ACK FIN URGP=0
> Jul 29 00:22:13 charity kernel: [  602.206538] iptables debug: IN=eth0
> OUT= MAC=40:40:b3:fc:05:28:00:18:8b:f9:70:05:08:00 SRC=67.207.130.204
> DST=67.207.128.184 LEN=64 TOS=0x00 PREC=0x00 TTL=63 ID=8713 DF PROTO=TCP
> SPT=22 DPT=36004 WINDOW=362 RES=0x00 ACK FIN URGP=0
> 
> The "iptables debug" prefix is what I've configured IPTables to use as
> the log prefix when it can't match a rule and is going to reject a packet.
> 
> Dunno what that's about...

Well, it looks like your firewall is dropping the SSH packet that's
being sent out (SPT=22).

James Andrewartha.




More information about the Progsoc mailing list