ipfwadm / ipchains: can't enable ssh !

To: debian-user@lists.debian.org, debian-firewall@lists.debian.org
Subject: ipfwadm / ipchains: can't enable ssh !
From: Michael Agbaglo <byteshifter@cadac.de>
Date: Fri, 19 Feb 1999 16:06:59 +0100
Message-id: <[🔎] 36CD7E13.2BE3E427@cadac.de>

192.168.100.108 is the local machine  - 192.168.100.* is outside.
I can telnet and ping outside - no problem. But I can't ssh to
192.168.100.102,
telnet on 192.168.100.108 doesn't work either and somehow printer jobs
aren't send until I disable the firewall

:-/

FW=/sbin/ipchains

case "$1" in

	start)

		# default policy
		${FW} -P forward DENY
		${FW} -P input DENY
		${FW} -P output DENY


		# loopback
		${FW} -A input -j ACCEPT -i lo
		${FW} -A output -j ACCEPT -i lo

 
		${FW} -A output -j ACCEPT -i eth0 -p tcp -s 192.168.100.108
		${FW} -A output -j ACCEPT -i eth0 -p udp -s 192.168.100.108



		${FW} -A input -j ACCEPT -i eth0 -p tcp \
			-d 192.168.100.108 1024: ! -y
		${FW} -A input -j ACCEPT -i eth0 -p udp \
			-d 192.168.100.108 1024:



		${FW} -A input -j ACCEPT -i eth0 -p tcp -d 192.168.100.108 25



		${FW} -A input -j ACCEPT -i eth0 -p icmp
		${FW} -A output -j ACCEPT -i eth0 -p icmp

		# masquerade

		${FW} -A forward -j MASQ -i ppp0 

	;;

	stop)
		${FW} -F
	;;

esac

Reply to:

Follow-Ups:
- Re: ipfwadm / ipchains: can't enable ssh !
  - From: Marco Maggesi <maggesi@math.unifi.it>

Prev by Date: FCT - Firewall Configuration Tool
Next by Date: Re: ipfwadm / ipchains: can't enable ssh !
Previous by thread: FCT - Firewall Configuration Tool
Next by thread: Re: ipfwadm / ipchains: can't enable ssh !
Index(es):
- Date
- Thread