Re: iptables and kvm
And good time of day to you, Sthu.
On Thursday, January 24, 2013 23:55, "Sthu Deus" <sthu.deus@gmail.com> said:
> Good time of the day, Craig.
>
> If You want to set Your own rules, You can write it to a file where You
> want to hold it, then You can put a script w/ execution bit set in
>
> /etc/network/if-pre-up.d
>
> that will read those files.
>
> As soon as the interface comes up, Your rules will come up too (in case
> it is correct - otherwise the defaults will be used).
>
>
> Sthu.
I'm afraid I wasn't clear in what I was asking for. I am fairly familiar
with iptables and how to enable my own rules at start up. I am just curious
to know where the existing rules came from. Something I installed created a
set of rules for the virtual network, and I would like to know what caused
that and what causes them to be enabled.
$ sudo iptables -L -n --line-numbers
Chain INPUT (policy ACCEPT)
num target prot opt source destination
1 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53
2 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53
3 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67
4 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:67
Chain FORWARD (policy ACCEPT)
num target prot opt source destination
1 ACCEPT all -- 0.0.0.0/0 192.168.221.0/24 state RELATED,ESTABLISHED
2 ACCEPT all -- 192.168.221.0/24 0.0.0.0/0
3 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
4 REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
5 REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
Chain OUTPUT (policy ACCEPT)
num target prot opt source destination
Thanks,
Craig
Sent - Gtek Web Mail
Reply to: