|
Hi all,
I use iptables to protect my network.
I have redhat 7.2 server (192.168.1.10) on which
run an apache web(80), samba server(139) and X11(6000).
I want let all my client pc (windows) to visit
the apache 80 port which works well.
Only one pc 192.168.1.5 can access the samba server
and connect X11 server via XWin32.
my scripts looks like
iptables -P INPUT DROP iptables -N RULE_0
iptables -A INPUT -p tcp -m state --state NEW -m multiport --destination-port 80, -j RULE_0 iptables -A RULE_0 -j
ACCEPT
iptables -N RULE_1
iptables -A INPUT -p tcp -m state --state NEW -s 192.168.1.5 --destination-port 6000 -j RULE_1 iptables -A RULE_4 -j ACCEPT iptables -N RULE_2 iptables -A INPUT -p tcp -m state --state
NEW -s 192.168.1.5 --destination-port 139 -j RULE_2
iptables -A RULE_6 -j ACCEPT
iptables -A INPUT -j
DROP
I run this script on my linux machine and find all
the pcs can visit the web server(80) but the machine 192.168.1.5 can not access
the samba server and connect the X11 server.
What is wrong?
Thanks
xiao
|
