Once upon a time Shaul Karl was quoted as saying:
would have add LOG rules in order to try and found out what happens
to those inbound packets.
Sorry I missed that off the post, logging does actually drop inbound
packets on eth0 to ssh or apache, it would seem after banging my head on a
wall,
Once upon a time John Hedge was quoted as saying:
Have a look at Shorewall (http://www.shorewall.net).
I really want to only use standard debian packages, apart from using LIDS
on a 2.4.21 kernel latter on, I have my main standalone firewall (Cisco
Pix 515e), and I really want to setup a basic
Hi Mark,
On Tue, 22 Jul 2003 23:56:48 +0100, Mark C wrote:
I can do outbound nslookup requests no problem, but it now fails to
allow inbound connections at all, to either port 80 or port 22.
At a quick look I think the problem is here.
/sbin/iptables -A INPUT -p tcp -i eth0 --dport 22
Hi,
I'm in the middle of trying to build a secure webserver, using stock
woody (2.4.18-bf2.4),
the box is completely updates from last night. I install just the base
(never used deselect or taskselect) during the install,
Once it was installed, I have installed:
apache
php4
ssh
dnsutils
lynx
Just to confirm, if I do not use state connections, and use static
instead i.e:
/sbin/iptables -A INPUT -p tcp -i eth0 --dport 22 \
--sport 1024:65535 -j ACCEPT
/sbin/iptables -A OUTPUT -p tcp -o eth0 --sport 22 \
--dport 1024:65535 -j ACCEPT
It works perfectly.
Mark
--
To UNSUBSCRIBE,
On Tue, Jul 22, 2003 at 11:56:48PM +0100, Mark C wrote:
I decided to test iptables, using a very,very basic script below:
[ ... ]
This is driving my mad, can anyone possibly point me in the right
direction, as it seems there may be something debian specific that I'm
missing.
I
Have a look at Shorewall (http://www.shorewall.net).
It's a lot easier than struggling directly with iptables and Tom Eastep
is a great manager of his list at [EMAIL PROTECTED]
John
On Wed, 2003-07-23 at 13:30, Shaul Karl wrote:
On Tue, Jul 22, 2003 at 11:56:48PM +0100, Mark C wrote:
7 matches
Mail list logo