-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Michael Pobega wrote: > I've been trying to get iptables working so that I can finally have a > worthwhile client-side non-graphical firewall. So to test it out, I > typed these two commands: > > /# iptables -A INPUT -p tcp --dport 80 -j ACCEPT > # iptables -A INPUT -j REJECT > > /And for some reason I completely lost my connection to port 80, even > though that command says "Allow all TCP connections to port 80, but > reject all others". > > Does anyone have any idea why this wouldn't be working? I've also tried > specifying -d (Destination) as localhost, 127.0.0.1, and 192.168.1.5 (My > current local IP), but none of them work like I'd wish. > > Any clue what I'm doing wrong with iptables that is basically making it > ignore all of my initial specificiations? > >
Hi, What about the OUTPUT chain ? Have you set up more rules ? By default, iptables policy is to ACCEPT all paquets. Have a look at : iptables -L -v to see your rules. An iptables tutorial can be found here : http://iptables-tutorial.frozentux.net/iptables-tutorial.html - -- Franck Joncourt http://www.debian.org http://smhteam.info/wiki/ GPG server : pgpkeys.mit.edu Fingerprint : C10E D1D0 EF70 0A2A CACF 9A3C C490 534E 75C0 89FE -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFyYT2xJBTTnXAif4RAg1vAJ0YcggScLB3jXnY14vUjPf25HT7NQCg1bGW ZYzcF9aEmQpJV2KqT7HtKnw= =L0yB -----END PGP SIGNATURE----- ___________________________________________________________ The all-new Yahoo! Mail goes wherever you go - free your email address from your Internet provider. http://uk.docs.yahoo.com/nowyoucan.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
