iptables - Solved
Patrick Derwael
pderwael at webandco.be
Sat Sep 16 08:32:48 UTC 2006
Nigel,
This is exactly what I needed, thanks a lot !!
>>>Patrick,
>
> You need to add ESTABLISHED,RELATED rules to allow responses to
> connections
> originating on the machine in question.
>
> iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
>
> ESTABLISHED,RELATED allows packets which are part of an established TCP
> connection i.e. the 3-way SYN-SYN/ACK-ACK has completed with no subsequent
> RST.
> It also allows UDP packets from a source IP/port which was a destination
> within the past 30s.
>
>
> --
> Nigel Wade, System Administrator, Space Plasma Physics Group,
> University of Leicester, Leicester, LE1 7RH, UK
> E-mail : nmw at ion.le.ac.uk
> Phone : +44 (0)116 2523548, Fax : +44 (0)116 2523555
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>
--
Web and Co
Patrick Derwael
Rue Hubert Larock, 20
4280 Hannut
Tel/Fax: 019/63.64.35
GSM: 0479/80.50.79
email: pderwael at webandco.be
http://www.webandco.be
More information about the redhat-list
mailing list