Why are these ports open in iptables on new FC4 install?
Michael H. Warfield
mhw at WittsEnd.com
Thu Feb 16 17:18:37 UTC 2006
On Sun, 2006-02-12 at 09:29 +0800, John Summerfied wrote:
> Scot L. Harris wrote:
:
> >
> > I also don't understand why ports 50 and 51 are open. I don't plan on
> > setting up a VPN at the moment and I don't know why these would be open
> > by default on a new install.
> Seems to me if you are one who's using IP6 it's something you'd want. If
> there's no IP6 around in your area, I don't see a problem.
As has been pointed out, that's not ports 50 and 51 but protocols 50
and 51 which are both part of IPSec (ESP and AH) and have nothing to do
with IPv6. If you DON'T have IPv6 in your area, and you want to use it
anyways, you might want protocol 41 (6in4 / 6to4) for IPv6 in IPv4
encapsulation (both static tunnels and 6to4 autotunnels). If you DO
have IPv6 in your area, nothing in this table applies anyways,
(reference ip6tables) since native IPv6 packets won't even pass through
this table.
:
> Cheers
> John
> -- spambait
> 1aaaaaaa at computerdatasafe.com.au Z1aaaaaaa at computerdatasafe.com.au
> Tourist pics http://portgeographe.environmentaldisasters.cds.merseine.nu/
Regards,
Mike
--
Michael H. Warfield (AI4NB) | (770) 985-6132 | mhw at WittsEnd.com
/\/\|=mhw=|\/\/ | (678) 463-0932 | http://www.wittsend.com/mhw/
NIC whois: MHW9 | An optimist believes we live in the best of all
PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 307 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20060216/fa72d145/attachment-0001.sig>
More information about the fedora-list
mailing list