| 
		
			| Host firewall -- SOLVED [message #3022] | Mon, 08 May 2006 15:44  |  
			| 
				
				
					|  ferp2 Messages: 29
 Registered: May 2006
 | Junior Member |  |  |  
	| Hello, 
 I have a generic firewall script that normally runs fine, but is giving me access problems between the host system and the vps. The firewall is set up for connections tracking using:
 
 /sbin/modprobe ip_conntrack "ip_conntrack_enable_ve0=1"
 
 With the host system firewall activated:
 
 - I cannot ping a vps from the host system. The message I get is:
 
 ping: sendmsg: Operation not permitted
 
 - I cannot ping the host system from the vps either.
 
 - I can successfully ping a separate machine on the same subnet from the host system.
 - I can successfully ping the host system from a separate machine on the same subnet.
 
 With the INPUT and OUTPUT policy set to ACCEPT, or the host system firewall deactivated:
 
 - I can successfully ping a vps from the host system.
 - I can successfully ping the host system from the vps.
 
 
 How do I maintain the INPUT and OUTPUT policy set to DROP on the host system, and yet still be able to successfully ping the vps from the host system and vice-versa.
 
 Thank you.
 [Updated on: Thu, 11 May 2006 12:45] Report message to a moderator |  
	|  |  |