I set up 3 CentOS servers, configured server2 as router between 192.168.1.0/24 and 30.0.0.0/24, but <code>ping</code> can't get through. I tried <code>ping 192.168.1.62</code> from server1, according to <code>tcpdump</code> on server3, ICMP request is received, but it doesn't generate ICMP response. <pre class="prettyprint"><code>23:36:06.436243 IP 30.0.0.2 > 192.168.1.62: ICMP echo request, id 23570, seq 2838, length 64 23:36:07.436212 IP 30.0.0.2 > 192.168.1.62: ICMP echo request, id 23570, seq 2839, length 64 </code></pre> <h3>Setup</h3> Servers <ul> <li> server1: <ul> <li>eth0 - 30.0.0.2</li> </ul> </li> <li> server2: <ul> <li>eth0 - 192.168.1.61</li> <li>eth0:0 - 30.0.0.1</li> </ul> </li> <li> server3: <ul> <li>eth0 - 192.168.1.62</li> </ul> </li> </ul> Routing <ul> <li> route info on server1: <ul> <li>0.0.0.0 30.0.0.1</li> </ul> </li> <li> route info on server3: <ul> <li>30.0.0.0/24 192.168.1.61</li> </ul> </li> </ul>

I was receiving ICMP packets but did not see them go out. The problem was related to the traffic traversing multiple interfaces and reverse path filtering being on by default... I've enabled martian source logging first: <pre class="prettyprint"><code>$ echo 1 >/proc/sys/net/ipv4/conf/eth2/log_martians </code></pre> Then there are several options for what to do with them... I'm enabling loosely handling them: <pre class="prettyprint"><code>$ sysctl net.ipv4.conf.all.rp_filter=2 </code></pre> See these for details: <ul> <li>http://lartc.org/howto/lartc.kernel.html</li> <li>https://access.redhat.com/site/solutions/53031</li> </ul>

icmp request received, but doesn't reply [closed]

Tags:

linux

networking

icmp

router

tcpdump

I set up 3 CentOS servers, configured server2 as router between 192.168.1.0/24 and 30.0.0.0/24, but ping can't get through.

I tried ping 192.168.1.62 from server1, according to tcpdump on server3, ICMP request is received, but it doesn't generate ICMP response.

23:36:06.436243 IP 30.0.0.2 > 192.168.1.62: ICMP echo request, id 23570, seq 2838, length 64
23:36:07.436212 IP 30.0.0.2 > 192.168.1.62: ICMP echo request, id 23570, seq 2839, length 64

Setup

Servers

server1:
- eth0 - 30.0.0.2
server2:
- eth0 - 192.168.1.61
- eth0:0 - 30.0.0.1
server3:
- eth0 - 192.168.1.62

Routing

route info on server1:
- 0.0.0.0 30.0.0.1
route info on server3:
- 30.0.0.0/24 192.168.1.61

890

asked Aug 30 '13 15:08

Robby

2 Answers

I was receiving ICMP packets but did not see them go out. The problem was related to the traffic traversing multiple interfaces and reverse path filtering being on by default...

I've enabled martian source logging first:

$ echo 1 >/proc/sys/net/ipv4/conf/eth2/log_martians

Then there are several options for what to do with them... I'm enabling loosely handling them:

$ sysctl net.ipv4.conf.all.rp_filter=2

See these for details:

http://lartc.org/howto/lartc.kernel.html
https://access.redhat.com/site/solutions/53031

144

answered Oct 19 '22 04:10

AXE Labs

Run tcpdump with -e flag and see if the destination MAC address is correct.