Re: iptables cont ...
On Monday 09 December 2002 23:17, you wrote:
> daves debian <dave_arahan@yahoo.co.uk> writes:
> > However as the link via PPP is made iptables -L gives ...
> >
> > debian:/home/test# iptables -L
> > Chain INPUT (policy DROP)
> > target prot opt source destination
> > ACCEPT all -- anywhere anywhere
> > LOG all -- 127.0.0.0/8 anywhere LOG level
> > warning DROP all -- 127.0.0.0/8 anywhere
> > ACCEPT all -- anywhere 255.255.255.255
> > ACCEPT all -- anywhere
> > m718-mp1.cvx1-c.nth.dial.ntli.net LOG all -- anywhere
> > anywhere LOG level warning DROP all -- anywhere
> > anywhere
> >
> > Chain FORWARD (policy DROP)
> > target prot opt source destination
> > LOG all -- anywhere anywhere LOG level
> > warning DROP all -- anywhere anywhere
> >
> > Chain OUTPUT (policy DROP)
> > target prot opt source destination
> > ACCEPT all -- anywhere anywhere
> > ACCEPT all -- anywhere 255.255.255.255
> > ACCEPT all -- m718-mp1.cvx1-c.nth.dial.ntli.net anywhere
> > LOG all -- anywhere anywhere LOG level
> > warning DROP all -- anywhere anywhere
> > debian:/home/test#
> >
> > and untill I reset iptables dial on demand fails ...
> >
> > My guess is that all these rules should not self generate ?
> > They are probarbly comming from a previous iptables script or setup demon
> > in mason or bastille ??
> > Any ideas ???
>
> Probably ppp. Check /etc/ppp (my guess; I have not used PPP in a
> while) or /etc/network - for some script that is run after you make
> your ppp connection. It may even be in /etc/network/interfaces.
>
> The: m718-mp1.cvx1-c.nth.dial.ntli.net is obviously your dynamically
> assigned IP address, so someone... or something (eek!) inserted your
> new IP address into the iptables.
>
> Elizabeth
Have checked all scripts in
/etc/ppp
/etc/network
/etc/network/interface
all wholsome and OK
eek! is appropreate !!!
any other ideas ??
Dave in desperation ....
PS
checked
ps ax
while link running, all OK there
PPS
I will never use a smart arse script again.
Its ASCII files & VI for me !!
dave
Reply to: