Re: iptables usage
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Michael Pobega wrote:
> I've been trying to get iptables working so that I can finally have a
> worthwhile client-side non-graphical firewall. So to test it out, I
> typed these two commands:
>
> /# iptables -A INPUT -p tcp --dport 80 -j ACCEPT
> # iptables -A INPUT -j REJECT
>
> /And for some reason I completely lost my connection to port 80, even
> though that command says "Allow all TCP connections to port 80, but
> reject all others".
>
> Does anyone have any idea why this wouldn't be working? I've also tried
> specifying -d (Destination) as localhost, 127.0.0.1, and 192.168.1.5 (My
> current local IP), but none of them work like I'd wish.
>
> Any clue what I'm doing wrong with iptables that is basically making it
> ignore all of my initial specificiations?
>
>
Hi,
What about the OUTPUT chain ? Have you set up more rules ? By default,
iptables policy is to ACCEPT all paquets.
Have a look at :
iptables -L -v to see your rules.
An iptables tutorial can be found here :
http://iptables-tutorial.frozentux.net/iptables-tutorial.html
- --
Franck Joncourt
http://www.debian.org
http://smhteam.info/wiki/
GPG server : pgpkeys.mit.edu
Fingerprint : C10E D1D0 EF70 0A2A CACF 9A3C C490 534E 75C0 89FE
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFFyYT2xJBTTnXAif4RAg1vAJ0YcggScLB3jXnY14vUjPf25HT7NQCg1bGW
ZYzcF9aEmQpJV2KqT7HtKnw=
=L0yB
-----END PGP SIGNATURE-----
___________________________________________________________
The all-new Yahoo! Mail goes wherever you go - free your email address from your Internet provider. http://uk.docs.yahoo.com/nowyoucan.html
Reply to: