[EMAIL PROTECTED] wrote: > Hello to you, > > After the following "iptables-rules" on Linux Redhat 7.2 Server :
I think your rules are out of order. You've got rules to drop everything at the beginning of the chain, so packets never make it far enough in to match the "allow" rules. Re-order like this: > /etc/rc.d/rc.local : ## Flush first > iptables -F ## Allow related packets > iptables -A INPUT -i eth0 -m state --state RELATED,ESTABLISHED -j ACCEPT ## Allow traffic to service ports you want to provide > iptables -A INPUT -i eth0 -p tcp --dport 80 -j ACCEPT > iptables -A INPUT -i eth0 -p tcp --dport 53 -j ACCEPT > iptables -A INPUT -i eth0 -p udp --dport 53 -j ACCEPT ## *THEN* drop everything else > iptables -A INPUT -i eth0 -m state --state NEW,INVALID -j DROP -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
