Mailing List
Home
Forum Home
Linux - General Red Hat Linux discussion list
Installation - Getting started with Red Hat Linux
Enterprise Linux 3 - Discussion of Red Hat Enterprise Linux 3 (Taroon)
Red Hat Linux 9 - Discussion of Red Hat Linux 9 (Shrike)
Red Hat Linux 7.3 - Discussion of Red Hat Linux 7.3 (Valhalla)
Red Hat Linux 7.2 - Discussion of Red Hat Linux 7.2 (Enigma)
Apache Web Server
Oracle database, Microsoft SQL server ...
Subjects
application/x mplayer2 plugin
RPM error: db4 error(16) from dbenv >remove: Device or resource
   busy
Command stream end of file while reading
X Windows problem (xauth)
Upgrading openoffice 1 1 rpm
FTP: connection refused
FTP: connection refused
mount: /dev/cdrom: is not a valid block device
Dell Precision 650, RedHat 9, no sound
how to trace the cause resulting in the crash of bind server
Virus on the list
UNINSTALL RPM MYSQL
usb pen drives: mounting as a user
broadcom network interface
make mrproper
sendmail configuration on redhat
Couldn 't open PID file /var/run/named/named pid Permission denied
Promise 378 controller
kernel 2 6 and /dev/sound/mixer not found
Problem using up2date
mrtg step by step howto/configuration for a newbie?
Compiling and Installing Kernel 2 6
Can 't locate module ppp0, can 't locate module ppp compress 21
HOW I CAN MAKE BOOTABLE FLOPPY DISKET
Lotus Notes under Wine
/etc/security/limits conf question
Intel E/1000 driver
Command stream end of file while reading
rpm database corrupt
qla2300 modules
 
iptables "turted device "

iptables "turted device "

2004-07-23       - By Pekka K. Kurki

 Back
Reply:     1     2     3     4  


Ajai Khattri schrieb:

>On Thu, 22 Jul 2004, Mike Burger wrote:
>
>  
>
>>With that rule, it looks to me like you're going to accept anything that
>>hits eth0, no matter where it comes from.
>>
>>On Thu, 22 Jul 2004, Pekka K. Kurki wrote:
>>
>>    
>>
>>>When I define in iptables
>>>
>>>-A RH-Lokkit-0 (See http://kit-0.ora-code.com)-50-INPUT -i eth0 -j ACCEPT
>>>      
>>>
>
>Though, the RH-Lokkit-0 (See http://kit-0.ora-code.com)-50-INPUT chain could contain blocking rules so
>that's no necessarily true.
>
>To be sure we need to see the output of "iptables -L -n"
>
>  
>

After dome tests and log reading it looks like Mike said it would be...
I replaced the line by

-A RH-Lokkit-0 (See http://kit-0.ora-code.com)-50-INPUT -s 192.168.0.0/24 -d 0/0  -j ACCEPT

and now it looks OK....

Thands for help

br,
Pekka!

(Mr.) Pekka K. Kurki
Intellectics GesmbH
http://www.intellectics.at, http://www.intellectics.com



<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
 <meta content="text/html;charset=ISO-8859 (See http://ISO-8859.ora-code.com)-1" http-equiv="Content-Type">
 <title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
<br>
Ajai Khattri schrieb:
<blockquote cite="midPine.BSO.4.58.0407230915210.14437@(protected)"
type="cite">
 <pre wrap="">On Thu, 22 Jul 2004, Mike Burger wrote:

 </pre>
 <blockquote type="cite">
   <pre wrap="">With that rule, it looks to me like you're going to accept
anything that
hits eth0, no matter where it comes from.

On Thu, 22 Jul 2004, Pekka K. Kurki wrote:

   </pre>
   <blockquote type="cite">
     <pre wrap="">When I define in iptables

-A RH-Lokkit-0 (See http://kit-0.ora-code.com)-50-INPUT -i eth0 -j ACCEPT
     </pre>
   </blockquote>
 </blockquote>
 <pre wrap=""><!---->
Though, the RH-Lokkit-0 (See http://kit-0.ora-code.com)-50-INPUT chain could contain blocking rules so
that's no necessarily true.

To be sure we need to see the output of "iptables -L -n"

 </pre>
</blockquote>
<br>
After dome tests and log reading it looks like Mike said it would be...
I replaced the line by<br>
<br>
-A RH-Lokkit-0 (See http://kit-0.ora-code.com)-50-INPUT -s 192.168.0.0/24 -d 0/0&nbsp; -j ACCEPT<br>
<br>
and now it looks OK....<br>
<br>
Thands for help<br>
<br>
br,<br>
Pekka!<br>
<br>
<pre class="moz-signature" cols="72">(Mr.) Pekka K. Kurki
Intellectics GesmbH
<a class="moz-txt-link-freetext" href="http://www.intellectics.at">http://www
.intellectics.at</a>, <a class="moz-txt-link-freetext" href="http://www
.intellectics.com">http://www.intellectics.com</a>

</pre>
</body>
</html>

--
Shrike-list mailing list
Shrike-list@(protected)
https://www.redhat.com/mailman/listinfo/shrike-list