i am quite a newbie ...
what you say means that i need to do a remove of both lines and add the
both in in the revers order ... is that correct ?
----- Original Message -----
From: "Craig White" <craigwhite@xxxxxxxxxxx>
To: "For users of Fedora Core releases" <fedora-list@xxxxxxxxxx>
Sent: Thursday, August 25, 2005 4:25 PM
Subject: Re: firewall problems
put the last line you added BEFORE the REJECT line
then
service iptables restart
Craig
On Thu, 2005-08-25 at 16:18 -0500, Steven J Lamb wrote:
----- Original Message -----
From: "Thomas Cameron" <thomas.cameron@xxxxxxxxxxxxxxx>
To: "For users of Fedora Core releases" <fedora-list@xxxxxxxxxx>
Sent: Thursday, August 25, 2005 3:49 PTable: filter
Chain FORWARD (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- 0.0.0.0/0 0.0.0.0/0
Chain INPUT (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain RH-Firewall-1-INPUT (2 references)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type
255
ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0
ACCEPT ah -- 0.0.0.0/0 0.0.0.0/0
ACCEPT udp -- 0.0.0.0/0 224.0.0.251 udp dpt:5353
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:631
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state
RELATED,ESTABLISHED
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW
tcp
dpt:22
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW
tcp
dpt:80
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW
tcp
dpt:21
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW
tcp
dpt:25
REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with
icmp-host-prohibited
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW
tcp
dpt:110
note that i added the last line and saw no change in behavior. although i
have not restarted or anything to that effect
Subject: Re: firewall problems
>> I am attempting to get my email server up and running. I am running
>> fedora
>> core 4. I have gotten my SMTP to work correctly. however my POP3 does
>> not
>> appear to get through the firewall. I did not have to punch a hole in
>> the
>> firewall myself for the SMTP, so I figured I would not need to for my
>> pop.
>> when I telnet localhost 110 I get in to my server but when I telnet in
>> from another machine I do not get into my server. I assume this
>> indicates
>> a firewall problem however I do not know what I need to modify in
>> order
>> to
>> fix this problem.
>
> What do you get when you run "service iptables status" as root? Can
> you
> post it to the list, please?
>
> Thomas
>
> --
> fedora-list mailing list
> fedora-list@xxxxxxxxxx
> To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
>
--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list