SYSTEM WARNING: 'date_default_timezone_get(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone.' in '/usr/share/mantis/www/core.php' line 264

0002113: Outgoing icmp traffic is limited by iptables. - MantisBT
MantisBT - Endian Firewall
View Issue Details
0002113Endian FirewallFirewall (iptables)public2009-08-29 13:312010-03-08 16:15
lightenup 
peter-endian 
normalfeaturealways
confirmedopen 
2.2 
future 
0002113: Outgoing icmp traffic is limited by iptables.
Today I added a rule to allow for my servers to perform traceroute to the internet. I am unable to perform a standard trace due to the fact that the limit is set to 'avg 3/sec burst'. So in order to complete the trace I need to do it slowly 'traceroute -z 700 -I 4.2.2.2'. Perhaps all rules should include a feature to limit them and make it possible to adjust the limiting rate. The BOT addon for IpCop had a similar feature.


Chain OUTGOINGFW (1 references)
pkts bytes target prot opt in out source destination

22 1275 NFLOG icmp -- br0 eth2 0.0.0.0/0 0.0.0.0/0 limit: avg 3/sec burst 5 mode srcip-dstip icmp type 8 nflog-prefix "OUTGOINGFW:ACCEPT:1"

12 714 ALLOW icmp -- br0 eth2 0.0.0.0/0 0.0.0.0/0 limit: avg 3/sec burst 5 mode srcip-dstip icmp type 8
No tags attached.
duplicate of 0000926assigned peter-endian firewalls: add possibility to hashlimit services 
Issue History
2009-08-29 13:31lightenupNew Issue
2009-08-29 13:31lightenupAssigned To => peter-endian
2010-03-08 16:14peter-endianStatusnew => confirmed
2010-03-08 16:14peter-endianSeverityblock => feature
2010-03-08 16:14peter-endianTarget Version => future
2010-03-08 16:15peter-endianRelationship addedduplicate of 0000926

There are no notes attached to this issue.