If the commands I gave you below worked then your system should be using iptables and not ipchains.
Make sure ipchains is disabled (chkconfig ipchains off). Look at your iptables rules to make sure that iptables is running iptables -nL Use iptables-save to save your rules. They will be saved to: /etc/sysconfig/iptables. Each time /etc/init.d/iptables is run (at boot) it will see those rules and load them. -Steve -----Original Message----- From: John Salamone [mailto:[EMAIL PROTECTED]] Sent: Monday, February 03, 2003 10:50 AM To: [EMAIL PROTECTED] Subject: Re: Network Steve, When I used the "ipchains-save" command, it didn't save it permanently. How do I do that? I tried stoppin / starting ipchains but it didn't do the trick. Any ideas? ----- Original Message ----- From: "Rigler, S C (Steve)" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Monday, February 03, 2003 11:25 AM Subject: RE: Network > That was just an example. > > Substituting xx.xx.xx.xx with the IP address of the machine to which you > wish to grant access would allow it to connect to port 22 on your firewall > box. > > No reboots should be necessary on any machines to accomplish this. > > If you just need to grant general access to your win98 machine try this: > > iptables -I INPUT --src <win98 ip>/32 -j ACCEPT > > Seeing your Linux box in Network Neighborhood will require some additional > configuration in Samba. > > -Steve > > -----Original Message----- > From: John Salamone [mailto:[EMAIL PROTECTED]] > Sent: Monday, February 03, 2003 10:14 AM > To: [EMAIL PROTECTED] > Subject: Re: Network > > > Steve, > > iptables -I INPUT --src xx.xx.xx.xx/32 -p tcp -m tcp --dport 22 -j ACCEPT > without saving it should I be able to see my Linux box in network > neighborhood on my win98 machine? If so, I can't. Do I need to reboot either > of my machines to establish the connection? > > ----- Original Message ----- > From: "Rigler, S C (Steve)" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Monday, February 03, 2003 10:59 AM > Subject: RE: Network > > > > Depending on whether or not your firewall is using iptables or ipchains > > there are commands you can use while the firewall is running to modify > > the rules. This would also depend on what you are trying to accomplish. > > > > Example (using iptables): > > > > If I wanted to allow a certain IP address to access port 22 (ssh) on > > my firewall box I would do: > > > > iptables -I INPUT --src xx.xx.xx.xx/32 -p tcp -m tcp --dport 22 -j ACCEPT > > > > Forwarding rules would be a little bit more elaborate, but once you have > > them set and they work, do "iptables-save" to save your rules. > > > > -Steve > > > > -----Original Message----- > > From: John Salamone [mailto:[EMAIL PROTECTED]] > > Sent: Monday, February 03, 2003 9:54 AM > > To: [EMAIL PROTECTED] > > Subject: Network > > > > > > Hi, > > > > I was wondering if there is a way to punch a hole in the Linux firewall to > > allow certain IP addresses through it without stopping it or changing it > so > > all IP addresses are allowed through it. My network is set up as so: dsl > > connected to my router / firewall connected to a win98 machine and a Linux > / > > win2000 server dual boot machine? Thanks > > > > > > > > -- > > redhat-list mailing list > > unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe > > https://listman.redhat.com/mailman/listinfo/redhat-list > > > > > > > > -- > > redhat-list mailing list > > unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe > > https://listman.redhat.com/mailman/listinfo/redhat-list > > > > -- > redhat-list mailing list > unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe > https://listman.redhat.com/mailman/listinfo/redhat-list > > > > -- > redhat-list mailing list > unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe > https://listman.redhat.com/mailman/listinfo/redhat-list > -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
