Re: iptable in fc5

• To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
• Subject: Re: iptable in fc5
• From: Jay Cliburn <jacliburn@xxxxxxxxxxxxx>
• Date: Mon, 15 May 2006 16:53:32 -0500
• In-reply-to: <2466.128.252.85.103.1147729908.squirrel@xxxxxxxxxxxxxxxxxx>
• References: <4461.128.252.85.103.1147721226.squirrel@xxxxxxxxxxxxxxxxxx> <4540.128.252.85.103.1147721638.squirrel@xxxxxxxxxxxxxxxxxx> <4468DDCE.1020004@xxxxxxxxxxxxxx> <1292.128.252.85.103.1147724721.squirrel@xxxxxxxxxxxxxxxxxx> <4468E80B.6050600@xxxxxxxxxxxxxx> <1910.128.252.85.103.1147727310.squirrel@xxxxxxxxxxxxxxxxxx> <4468F41C.9010800@xxxxxxxxxxxxxx> <2466.128.252.85.103.1147729908.squirrel@xxxxxxxxxxxxxxxxxx>
• Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

On Mon, 2006-05-15 at 16:51 -0500, Hongwei Li wrote:
> I want to ask another question -- Why do we need the last line in the file
> iptables:
> -A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
> 
> If I comment it out, then everything works.  Will that cause firewall actually
> not functioning?  

If you remove that line, nothing will get rejected.  It's the cactchall
rule.

• References:
  • iptable in fc5
    • From: Hongwei Li
  • Re: iptable in fc5
    • From: Hongwei Li
  • Re: iptable in fc5
    • From: list user
  • Re: iptable in fc5
    • From: Hongwei Li
  • Re: iptable in fc5
    • From: list user
  • Re: iptable in fc5
    • From: Hongwei Li
  • Re: iptable in fc5
    • From: list user
  • Re: iptable in fc5
    • From: Hongwei Li

• Prev by Date: Re: iptable in fc5
• Next by Date: Re: A Very happy Camper on FC4
• Previous by thread: Re: iptable in fc5
• Next by thread: Re: iptable in fc5
• Index(es):
  • Date
  • Thread