[Firewall] Self-connect possible?

Rance Hall ranceh at gmail.com
Thu Mar 18 00:44:17 CET 2010


On Wed, Mar 17, 2010 at 5:47 PM, Roland Haeder <r.haeder at gmx.de> wrote:
> Hi Rance,
>
> -----------------------------------
> quix0r at quix0r:~$ ping free-search.homelinux.org
> PING free-search.homelinux.org (94.221.128.75) 56(84) bytes of data.
> 64 bytes from dslb-094-221-128-075.pools.arcor-ip.net (94.221.128.75):
> icmp_seq=1 ttl=64 time=0.133 ms
> 64 bytes from dslb-094-221-128-075.pools.arcor-ip.net (94.221.128.75):
> icmp_seq=2 ttl=64 time=0.147 ms
> 64 bytes from dslb-094-221-128-075.pools.arcor-ip.net (94.221.128.75):
> icmp_seq=3 ttl=64 time=0.130 ms
> 64 bytes from dslb-094-221-128-075.pools.arcor-ip.net (94.221.128.75):
> icmp_seq=4 ttl=64 time=0.133 ms
> 64 bytes from dslb-094-221-128-075.pools.arcor-ip.net (94.221.128.75):
> icmp_seq=5 ttl=64 time=0.125 ms
> ^C

I think this is the problem because it doesnt look fine.

On this box this name resolves to the public ip address.  I bet your
internal clients resolve the same name to the internal ip address of
this same box.

Edit your /etc/hosts file so that the name on this box finds the IP you want.

or, if you use dns on your internal net, reconfigure the host to point
to itself for name resolution.


More information about the Firewall mailing list