Re: iptables isn't blocking IP

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: Re: iptables isn't blocking IP
From: Aleksandar Milivojevic <amilivojevic@xxxxxx>
Date: Fri, 21 Jan 2005 10:21:30 -0600
In-reply-to: <[email protected]>
List-archive: <https://www.redhat.com/archives/fedora-list>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
References: <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
User-agent: Mozilla Thunderbird (X11/20041216)

Alexander Dalloz wrote:

My answer would be: NO. Please see my other reply. I suspect that the
default iptables design from FC is still active for Kevin. So incoming
traffic to port 22 is already catched by rule

-A RH-Firewall-1-INPUT -i eth0 -m state --state NEW -m tcp -p tcp
--dport 22 -j ACCEPT

If he's using default design from FC, it is very likely that whatever he puts in will be overwritten on updates or next time he runs Red Hat's firewall config tool. I've saw in couple of places things like "if string RH-Firewall-1-INPUT is present in /etc/sysconfig/iptables, assume we have full controll of it, and overwrite it completely".

--
Aleksandar Milivojevic <amilivojevic@xxxxxx>    Pollard Banknote Limited
Systems Administrator                           1499 Buffalo Place
Tel: (204) 474-2323 ext 276                     Winnipeg, MB  R3T 1L7

References:
- iptables isn't blocking IP
  - From: Kevin Old
- Re: iptables isn't blocking IP
  - From: David Hoffman
- Re: iptables isn't blocking IP
  - From: Kevin Old
- Re: iptables isn't blocking IP
  - From: Alexander Dalloz
- Re: iptables isn't blocking IP
  - From: Kevin Old
- Re: iptables isn't blocking IP
  - From: David Hoffman
- Re: iptables isn't blocking IP
  - From: Alexander Dalloz

Prev by Date: Re: FC3 installer unable to automatically create linux partitionsinextended partiton
Next by Date: Re: what are you using to write webpages?
Previous by thread: Re: iptables isn't blocking IP
Next by thread: Re: iptables isn't blocking IP
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]