Re: iptables dropping legitimate packets?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: Re: iptables dropping legitimate packets?
From: David Cary Hart <Fedora@xxxxxxxxxxx>
Date: Thu, 24 Feb 2005 11:44:03 -0500
In-reply-to: <[email protected]>
List-archive: <https://www.redhat.com/archives/fedora-list>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
References: <[email protected]>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

On Thu, 2005-02-24 at 11:30 -0500, Jan Morales wrote:

> # Firewall configuration written by redhat-config-securitylevel
> # Manual customization of this file is not recommended.
> *filter
> :INPUT ACCEPT [0:0]
> :FORWARD ACCEPT [0:0]
> :OUTPUT ACCEPT [0:0]
> :RH-Firewall-1-INPUT - [0:0]
> -A INPUT -j RH-Firewall-1-INPUT
> -A FORWARD -j RH-Firewall-1-INPUT
> -A RH-Firewall-1-INPUT -i lo -j ACCEPT
> -A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT
> -A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j 
> ACCEPT
> -A RH-Firewall-1-INPUT -j LOG -d 192.168.0.5 --log-prefix "iptables: "
> -A RH-Firewall-1-INPUT -j DROP
> COMMIT
> 
This effects a log and drop default policy. It will log and drop all
packets that are not previously ACCEPTed. Does lsmod show that conntrack
is loaded?
-- 

         Total Quality Management - A Commitment to Excellence
Fight Spam:     http://www.tqmcube.com/rbldnsd.htm
Daily Updates:  http://www.tqmcube.com/spam_trap.htm
                rsync -l tqmcube.com::spamlists

Follow-Ups:
- Re: iptables dropping legitimate packets?
  - From: Jan Morales

References:
- iptables dropping legitimate packets?
  - From: Jan Morales

Prev by Date: Re: No sound for CDs
Next by Date: Re: Wireless PCMCIA Cards
Previous by thread: iptables dropping legitimate packets?
Next by thread: Re: iptables dropping legitimate packets?
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]

Powered by Linux