| Host firewall -- SOLVED [message #3022] |
Mon, 08 May 2006 15:44  |
ferp2
Messages: 29
Registered: May 2006
|
Junior Member |
|
|
Hello,
I have a generic firewall script that normally runs fine, but is giving me access problems between the host system and the vps. The firewall is set up for connections tracking using:
/sbin/modprobe ip_conntrack "ip_conntrack_enable_ve0=1"
With the host system firewall activated:
- I cannot ping a vps from the host system. The message I get is:
ping: sendmsg: Operation not permitted
- I cannot ping the host system from the vps either.
- I can successfully ping a separate machine on the same subnet from the host system.
- I can successfully ping the host system from a separate machine on the same subnet.
With the INPUT and OUTPUT policy set to ACCEPT, or the host system firewall deactivated:
- I can successfully ping a vps from the host system.
- I can successfully ping the host system from the vps.
How do I maintain the INPUT and OUTPUT policy set to DROP on the host system, and yet still be able to successfully ping the vps from the host system and vice-versa.
Thank you.
[Updated on: Thu, 11 May 2006 12:45] Report message to a moderator |
|
|
|
OpenVZ Forum
Members
Search
Help
Register
Login
Home
