Problem with Firewall
Alexander Dalloz
alexander.dalloz at uni-bielefeld.de
Thu Sep 30 12:19:19 UTC 2004
Am Do, den 30.09.2004 schrieb TongKe Xue um 8:30:
> --BEGIN QUOTE--
> ## Insert connection-tracking modules (not needed if built into kernel).
> # insmod ip_conntrack
> # insmod ip_conntrack_ftp
>
> ## Create chain which blocks new connections, except if coming from inside.
> # iptables -N block
> # iptables -A block -m state --state ESTABLISHED,RELATED -j ACCEPT
> # iptables -A block -m state --state NEW -i ! ppp0 -j ACCEPT
> # iptables -A block -j DROP
>
> ## Jump to that chain from INPUT and FORWARD chains.
> # iptables -A INPUT -j block
> --END QUOTE--
What are the rules for OUTPUT? Seems that you at least block some
traffic on localhost which prevents the GUI starting.
Alexander
--
Alexander Dalloz | Enger, Germany | GPG key 1024D/ED695653 1999-07-13
Fedora GNU/Linux Core 2 (Tettnang) kernel 2.6.8-1.521smp
Serendipity 14:17:10 up 16:43, 14 users, 0.35, 0.45, 0.34
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20040930/9fd314ba/attachment-0001.sig>
More information about the fedora-list
mailing list