FC3 Print Sharing
Steve Croteau
stevecroteau at comcast.net
Thu Jul 7 21:52:37 UTC 2005
On Thursday 07 July 2005 1:32 pm, Alexander Dalloz wrote:
> Am Do, den 07.07.2005 schrieb Steve Croteau um 22:13:
> > Alexander,
> > I ran the following and got this output.
> >
> > Chain RH-Firewall-1-INPUT (2 references)
> > target prot opt source destination
> > ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
> > ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type
> > 255 ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0
> > ACCEPT ah -- 0.0.0.0/0 0.0.0.0/0
> > ACCEPT udp -- 0.0.0.0/0 224.0.0.251 udp dpt:5353
> > ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:631
>
> UDP port 631 is open
>
> > ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state
> > RELATED,ESTAB LISHED
> > ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW
> > tcp dpt:6 31
> > ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW
> > udp dpt:6 31
>
> Those 2 rules above look strange: is that <space> a result of mail
> pasting?
>
> > REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with
> > icmp-ho st-prohibited
>
> Did you hand edit the iptables rules file? I don't understand why the
> first UDP port 631 rule matches all states and then a second rule for
> port 631 UDP is for state NEW only. Does not do any harm but looks not
> like generated by system-config-securitylevel.
>
> Alexander
Alexander,
I have not edited this file. And yes, I believe the staggered columns of
zero's are due to mail posting. (If that is what you were referring to).
Steve
More information about the fedora-list
mailing list