Firewall questions I promised you.

Mailing List

Home

Linux - General Red Hat Linux discussion list

Enterprise Linux 3 - Discussion of Red Hat Enterprise Linux 3 (Taroon)

Red Hat Linux 9 - Discussion of Red Hat Linux 9 (Shrike)

Installation - Getting started with Red Hat Linux

Red Hat Linux 7.3 - Discussion of Red Hat Linux 7.3 (Valhalla)

Red Hat Linux 8.0 - Discussion of Red Hat Linux 8.0 (Psyche)

Red Hat Linux 7.2 - Discussion of Red Hat Linux 7.2 (Enigma)

Red Hat Linux 7.1 - Discussion of Red Hat Linux 7.1 (Seawolf)

Apache Web Server

Oracle database, Microsoft SQL server ...

Subjects

•	application/x mplayer2 plugin
•	RPM error: db4 error(16) from dbenv >remove: Device or resource busy
•	Command stream end of file while reading
•	X Windows problem (xauth)
•	Upgrading openoffice 1 1 rpm
•	FTP: connection refused
•	FTP: connection refused
•	mount: /dev/cdrom: is not a valid block device
•	Dell Precision 650, RedHat 9, no sound
•	how to trace the cause resulting in the crash of bind server
•	Virus on the list
•	UNINSTALL RPM MYSQL
•	usb pen drives: mounting as a user
•	broadcom network interface
•	make mrproper
•	sendmail configuration on redhat
•	Couldn 't open PID file /var/run/named/named pid Permission denied
•	Promise 378 controller
•	kernel 2 6 and /dev/sound/mixer not found
•	Problem using up2date
•	mrtg step by step howto/configuration for a newbie?
•	Compiling and Installing Kernel 2 6
•	Can 't locate module ppp0, can 't locate module ppp compress 21
•	HOW I CAN MAKE BOOTABLE FLOPPY DISKET
•	Lotus Notes under Wine
•	/etc/security/limits conf question
•	Intel E/1000 driver
•	Command stream end of file while reading
•	rpm database corrupt
•	qla2300 modules

Firewall questions I promised you.

Firewall questions I promised you.

2004-05-31 - By Bruce McDonald

Back

Reply: 1 2 3 4 5 6 7 8 9 10 >>

Hello all,

I have written my firewall rules using the examples in Linux Firewall Second
Edition by Robert Zeigler. Now, when I run the script I get a couple of
errors.

One is:
Bad argument `22 '
Try `iptables -h ' or 'iptables --help ' for more information.

This shows up after lines like:
if [ "$CONNECTION_TRACKING " = "1 " ]; then
iptables -A local-tcp-client-request -p tcp \
-d $SSH_CLIENT --dport 22 \
--syn -m state --state NEW \
-j ACCEPT
fi

iptables -A local-tcp-client-request -p tcp \
-d $SSH_CLIENT --dport 22 \
-j ACCEPT

and:
if [ "$CONNECTION_TRACKING " = "1 " ]; then
iptables -A remote-tcp-client-request -p tcp \
-s $SSH_CLIENT --destination-port 22 \
-m state --state NEW \
-j ACCEPT
fi

iptables -A remote-tcp-client-request -p tcp \
-s $SSH_CLIENT --destination-port 22 \
-j ACCEPT

I played with the order of the items on the line and did manage to get rid
of Bad argument 22 by moving the (in the trial case I used a destination
port line) --dport22 ahead of the destination itself. This did generate a
different complaint, which I have forgotten in the intervening time.

So, is there an error in the order of the layout of the iptables lines I
have listed above?

My next error is:
iptables v1.2.7a: host/network `yahoo.com ' not found
Try `iptables -h ' or 'iptables --help ' for more information.

I assume this means the firewall is halting packets to or from my DNS
server.
I still have to check a little further into this, I do have rules that are
supposed to allow the traffic. I will post them for your input once I
figure that I don 't see anything at all wrong with them.
(...So expect to see them in about a day...) I fear the rules may be for
server to server traffic and not really for client to server.

Thanks for any help.

Regards,
Bruce McDonald

__ ____ ____ ____ ____ ____ ____ ____ ____ ____
Redhat-install-list mailing list
Redhat-install-list@(protected)
https://www.redhat.com/mailman/listinfo/redhat-install-list
To Unsubscribe Go To ABOVE URL or send a message to:
redhat-install-list-request@(protected)
Subject: unsubscribe