Am Do, den 30.09.2004 schrieb TongKe Xue um 8:30: > --BEGIN QUOTE-- > ## Insert connection-tracking modules (not needed if built into kernel). > # insmod ip_conntrack > # insmod ip_conntrack_ftp > > ## Create chain which blocks new connections, except if coming from inside. > # iptables -N block > # iptables -A block -m state --state ESTABLISHED,RELATED -j ACCEPT > # iptables -A block -m state --state NEW -i ! ppp0 -j ACCEPT > # iptables -A block -j DROP > > ## Jump to that chain from INPUT and FORWARD chains. > # iptables -A INPUT -j block > --END QUOTE-- What are the rules for OUTPUT? Seems that you at least block some traffic on localhost which prevents the GUI starting. Alexander -- Alexander Dalloz | Enger, Germany | GPG key 1024D/ED695653 1999-07-13 Fedora GNU/Linux Core 2 (Tettnang) kernel 2.6.8-1.521smp Serendipity 14:17:10 up 16:43, 14 users, 0.35, 0.45, 0.34
Attachment:
signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil
