LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Ping spikes with iptables
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 10-23-2003, 09:39 AM   #1
Mogh
LQ Newbie
 
Registered: Oct 2003
Posts: 14

Rep: Reputation: 0

I already have a Zywall internet firewall/router box but for added protection I want to use iptables on the RH Linux 8.0 apache box that is servering web pages.

The problem I have is whenever iptables is turned on I get ping spikes. I have deleted all rules and even without any rules I still get these spikes. The spikes only occur when iptables is turned on and when pinging the box from a station. Pinging out from the box is fine without any spikes.

Pinging from the LAN the spikes are not to bad, about every 8-10 pings and it only goes up to 20ms. But if I ping in from the internet the spikes are between 200 to 800ms, instead of the steady 30ms-40ms with iptables turned off.

The PC is a Pentium 4, w/512mb memory with top showing very little resources being used.

Any one have any ideas on this one?
Last edited by Mogh; 10-23-2003 at 04:29 PM.
 
Old 10-29-2003, 07:14 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600Reputation: 3600
I don't know. I don't think it's a security issue.
What about traceroutes to the webserver and actual connections? Any weird latency problems there too?
Does your iptables script do more than just load rules? Like change /proc values?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
configuring iptables to allow ping notolerance Linux - Security 2 01-10-2005 07:01 PM
can't allow ping from my box to the outside world - iptables anorman Linux - Networking 1 09-23-2004 08:53 AM
ping not resolving names - iptables PlatinumRik Linux - Security 2 07-28-2004 11:32 PM
ping loss w/ iptables ridertech Linux - Networking 2 02-18-2004 08:32 PM
?howto iptables ping pudhiyavan Linux - Networking 10 12-09-2003 10:37 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 07:50 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration