Hi,
Thank you to everyone who helped me find some resources to get me started
with setting up a firewall. I've decided to use ipchains to do my packet
filtering, but I've come across a problem that I can't seem to figure out.
I was just trying to add some rules for packet filtering using ipchains.
When I have the defaults set to ACCEPT, I can ping other computers in my
network. The packet comes back and everything is just fine and dandy, but
once I change the defaults to DENY and start adding rules, things get pretty
weird.
Here's the problem. When I attempt to ACCEPT all protocols between
computers in my network:
/sbin/ipchains -A input -j ACCEPT -p all -s 192.168.0.1/24 -d 192.168.0.1/24
/sbin/ipchains -A ouput -j ACCEPT -p all -s 192.168.0.1/24 -d 192.168.0.1/24
ping does not work.
When I specify the ICMP protocol:
/sbin/ipchains -A input -j ACCEPT -p icmp -s 192.168.0.1/24 -d
192.168.0.1/24
/sbin/ipchains -A input -j ACCEPT -p icmp -s 192.168.0.1/24 -d
192.168.0.1/24
ping works.
So, the question is: Why does my system need to have the ICMP protocol
accepted explicitly?? I mean, when I specify "-p all" (all protocols), is
that NOT ALL-INCLUSIVE??
Has anyone heard of this problem? Or am I just doing something wrong?
Thank you for whatever help you can give me.
Myron
________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
