firewall ports not working
Eric Wagar
eric at deadhookers.org
Sat Jul 23 13:52:57 UTC 2005
> Please post the output of "service iptables status". What you posted in
> your first mail was incomplete an probably hides the problem.
The previous output was from what I thought the relevant file
information from the /etc/sysconfig/iptables. But, the following output
is the service output:
Table: nat
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Table: mangle
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Table: filter
Chain INPUT (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 0
limit: avg 2/sec burst 5
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp
multiport sports 20,25
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp
spts:2224:2225
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp
multiport sports 8009,8080
Chain RH-Firewall-1-INPUT (2 references)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 8
limit: avg 2/sec burst 5
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state
RELATED,ESTABLISHED
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:25
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp
multiport dports 21,80,6969
ACCEPT tcp -- 209.25.194.144/28 209.25.194.144/28 tcp dpt:53
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp
dpts:2224:2225
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp
multiport dports 8009,8080
REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with
icmp-host-prohibited
More information about the fedora-list
mailing list