I have iptables-1.2.6a running on a Redhat Linux 7.2 system with
I setup virtual interfaces on eth0 and assign IPs to each interface
for domains that I host. For example I have entries in rc.local like
/sbin/ifconfig eth0:14 188.8.131.52 netmask 255.255.255.0
/sbin/route add -host 184.108.40.206 dev eth0:14
My entries in Apache web server are correct and my nameserver is
correct. However, when I try to access 220.127.116.11 in anyway
(ping, traceroute, thru browser) I get errors.
With ping, I get 'Operation not permitted'
My firewall rules for ICMP are like so,
$IPTABLES -N icmp_packets
$IPTABLES -A icmp_packets -p ICMP -s 0/0 -d 0/0 -j ACCEPT
I can ping the IP on eth0 (i.e., 18.104.22.168), no problem, but I can
not ping any of the virtual interfaces.
If I stop the firewall, then I can ping all virtual IPs okay.
Now, I have the same basically the same setup on another machine
running ipchains on a Redhat Linux 7.1 system. I have never had any
problems with virtual interfaces with an ipchains firewall. I setup
the same rules for ICMP packets under ipchains and it works fine.
I have had someone tell me that I should use iproute2, but I have
never had to use this before and do not have any experience with
Does anyone know what is going on here and how I can correct this?
Wild Apache Internet Services