iptables filter rules Question??
Hello:
I am having difficulties getting my firewall rules to behave correctly or
atleast as I want them to...
This is my rule set:
1 iptables -P INPUT DROP
2 iptables -A INPUT -p icmp -j ACCEPT
3 iptables -A INPUT -i lo -j ACCEPT
4 iptables -A INPUT -i ppp0 -p tcp --dport 22 -j ACCEPT
5 iptables -A INPUT -i ppp0 -m state --state ESTABLISHED,RELATED -j ACCEPT
6 iptables -A INPUT -i ppp0 -p tcp -j REJECT --reject-with tcp-reset
7 iptables -A INPUT -i ppp0 -p udp -j REJECT
8 iptables -A INPUT -i ppp0 -j REJECT --reject-with icmp-proto-unreachable
9 iptables -P FORWARD DROP
10 iptables -P OUTPUT ACCEPT
*********************************************************
1.) Line number five does not work, iptables complains when I issue that
rule.
2.) The functionality I want from my firewall rule set is:
Deny all incoming traffic except, port 22 ssh and allow pings
Allow all outgoing traffic, as well as, it should be able to come
back in if it originated from my box
The above rule set did work when I had an ethernet connection on a
different network, but when I changed to dialup, I have problems getting
these to work.
Thanks for the information and help.
Brian
Reply to: