Good time of the day, Craig.
Please, do not write to me directly, but through the list. You wrote: > I'm afraid I wasn't clear in what I was asking for. I am fairly > familiar with iptables and how to enable my own rules at start up. I > am just curious to know where the existing rules came from. Something Oh, I got it now. But I'm sorry, I do not know the answer on Your question. :o) If I had a newly installed system - I would search for the answer in /etc/network dir. OR iptables package files. > I installed created a set of rules for the virtual network, and I > would like to know what caused that and what causes them to be > enabled. > > $ sudo iptables -L -n --line-numbers > Chain INPUT (policy ACCEPT) > num target prot opt source destination > 1 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53 > 2 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 > 3 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67 > 4 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:67 > > Chain FORWARD (policy ACCEPT) > num target prot opt source destination > 1 ACCEPT all -- 0.0.0.0/0 192.168.221.0/24 state > RELATED,ESTABLISHED 2 ACCEPT all -- 192.168.221.0/24 > 0.0.0.0/0 3 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 > 4 REJECT all -- 0.0.0.0/0 0.0.0.0/0 > reject-with icmp-port-unreachable 5 REJECT all -- > 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable > > Chain OUTPUT (policy ACCEPT) > num target prot opt source destination Wow. Interesting. It seems that the software that changes Your iptables rules awaits that the machine will serve domain and boot requests. May You will check who listens (processes and hence exetubales/packages if any) on those ports? Sthu. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/51038bea.652e700a.1b25.4...@mx.google.com