On Thursday 07 July 2005 1:32 pm, Alexander Dalloz wrote: > Am Do, den 07.07.2005 schrieb Steve Croteau um 22:13: > > Alexander, > > I ran the following and got this output. > > > > Chain RH-Firewall-1-INPUT (2 references) > > target prot opt source destination > > ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 > > ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type > > 255 ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0 > > ACCEPT ah -- 0.0.0.0/0 0.0.0.0/0 > > ACCEPT udp -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 > > ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:631 > > UDP port 631 is open > > > ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state > > RELATED,ESTAB LISHED > > ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW > > tcp dpt:6 31 > > ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW > > udp dpt:6 31 > > Those 2 rules above look strange: is that <space> a result of mail > pasting? > > > REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with > > icmp-ho st-prohibited > > Did you hand edit the iptables rules file? I don't understand why the > first UDP port 631 rule matches all states and then a second rule for > port 631 UDP is for state NEW only. Does not do any harm but looks not > like generated by system-config-securitylevel. > > Alexander Alexander, I have not edited this file. And yes, I believe the staggered columns of zero's are due to mail posting. (If that is what you were referring to). Steve
