( ipchains and iptables )
of
Linux Redhat 6.2 and 7.2
Go here: http://muse.linuxmafia.org/
Get gShield. It will save you time.
JAV
On Sat, 2003-03-08 at 00:08, [EMAIL PROTECTED] wrote:
Hello to you,
If I want to allow users to use some of port numbers ( services ),
eg : port 80 ( http ), port
the ipchains and iptable to filt which port numbers (
services ) allow users to connect ?
Are there any samples about ipchains and iptables ?
Thank for your help !
Edward.
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo
machine :
iptables -F
iptables -A INPUT -i eth0 -p tcp --dport 20 -j ACCEPT
But I can connect to http://ip_address...
So, I want to know why I can connect to http://ip_address with port 80 ?
Not enough input. Post the _complete_ output of ipchains-save or
iptables-save, respectively
-A INPUT -i eth0 -p tcp --dport 443 -j ACCEPT
iptables -A INPUT -i eth0 -p tcp --dport 113 -j ACCEPT
So, any problem of the setting about ipchains and iptables ?
Very thank for your help !
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://listman.redhat.com/mailman
input. Post the _complete_ output of ipchains-save or
iptables-save, respectively.
For ipchains,
/sbin/ipchains -F
/sbin/ipchains -A input -i eth0 -p tcp --dport 20 -j ACCEPT
/sbin/ipchains -A input -i eth0 -p tcp --dport 21 -j ACCEPT
/sbin/ipchains -A input -i eth0 -p tcp --dport 22 -j
://ip_address with port 80 ?
Not enough input. Post the _complete_ output of ipchains-save or
iptables-save, respectively.
For ipchains,
/sbin/ipchains -F
/sbin/ipchains -A input -i eth0 -p tcp --dport 20 -j ACCEPT
/sbin/ipchains -A input -i eth0 -p tcp --dport 21 -j ACCEPT
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Fri, 07 Mar 2003 23:57:19 +0800, [EMAIL PROTECTED] wrote:
Now, I want to know how to allow users connect to some of ports ( services ) by
using ipchains and iptables ?
eg : allow user connect to ports : 80 ( http ), 53 ( DNS ) only...
I would
Michael Schwendt wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Fri, 07 Mar 2003 23:57:19 +0800, [EMAIL PROTECTED] wrote:
Now, I want to know how to allow users connect to some of ports ( services ) by
using ipchains and iptables ?
eg : allow user connect to ports : 80 ( http
Hello to you,
If I want to allow users to use some of port numbers ( services ), eg :
port 80 ( http ), port 53 ( DNS ), etc... only!
So, how can I set the ipchains and iptable to filt which port numbers (
services ) allow users to connect ?
Are there any samples about ipchains and iptables
Dear All,
After the following setting of ipchains on 6.2 machine :
/sbin/ipchains -F
/sbin/ipchains -A input -i eth0 -p tcp --dport 20 -j ACCEPT
After the following setting of iptables on 7.2 machine :
iptables -F
iptables -A INPUT -i eth0 -p tcp --dport 20 -j ACCEPT
But I can connect to
Is anyone aware of script to convert ipchains rules to iptables ones?
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list
No, but if you are looking for a good firewall package that uses IPtables get
firestarter
http://firestarter.sourceforge.net
On Sunday, Oct 13, 2002, at 02:36PM, Haisam K. Ido [EMAIL PROTECTED] wrote:
Is anyone aware of script to convert ipchains rules to iptables ones?
--
redhat-list
On Sun, Oct 13, 2002 at 01:09:26PM -0700, Nicholas Marsh wrote:
No, but if you are looking for a good firewall package that uses
IPtables get firestarter
http://firestarter.sourceforge.net
Is anyone aware of script to convert ipchains rules to iptables ones?
I don't think I would trust
]
rs@Reuterscc:
Sent by: Subject: ipchains vs iptables with
7.3 new install
redhat-list
)
Reuters Treasury Solutions (public)
Phone: +44 24 7625 6562
Fax: +44 24 7655 5203
k clair [EMAIL PROTECTED]
Sent by: [EMAIL PROTECTED]
20/09/02 16:37
Please respond to redhat-list
To:[EMAIL PROTECTED]
cc:
Subject:Re: ipchains vs iptables with 7.3 new install
found I'd been told ipchains: Protocol not available.
RTFMAWP - and found out all about iptables and ipchains and realised that I want to use iptables. Both iptables and ipchains are defined (and ticked, for my fellow pedants!) in the Services list, but when I tried ipchains -L I was told
is
not installed (don't ask me why - I don't know), so
I tried the vanilla
lokkit (quaint!). I selected No firewall and OK'd
that, but when the
window closed I found I'd been told ipchains:
Protocol not available.
RTFMAWP - and found out all about iptables and
ipchains and realised that
I
:
Sent by: Subject: Re: ipchains vs iptables with
7.3 new install
redhat-list-admin
It appears my suspicion that ipchains was preventing telnet access was wrong - there's no ipchains in /etc/sysconfig, so the daemon isn't started. I'll see what I can do with your rules tables - ta.
/Sam
Sam Sexton
Reuters Coventry
Reuters Treasury Solutions (Internal)
Reuters Treasury
That is not necessarily the case.
/etc/sysconfig/ipchains only exists if you run the service ipchains save
command (or something else runs it).
To see if it's running, try service ipchains status or ipchains -L.
On Fri, 20 Sep 2002 [EMAIL PROTECTED] wrote:
It appears my suspicion that
not available.
-
- RTFMAWP - and found out all about iptables and ipchains and realised that
- I want to use iptables. Both iptables and ipchains are defined (and
- ticked, for my fellow pedants!) in the Services list, but when I tried ipchains -L
I was told ipchains: Incompatible with this kernel (so
5203
Mike Burger [EMAIL PROTECTED]
Sent by: [EMAIL PROTECTED]
20/09/02 16:29
Please respond to redhat-list
To:[EMAIL PROTECTED]
cc:
Subject:Re: ipchains vs iptables with 7.3 new install
Header:Internal Use Only
That is not necessarily the case.
/etc
Well that answers this particular part...you're not running
ipchains...you're running iptables. G
On Fri, 20 Sep 2002 [EMAIL PROTECTED] wrote:
Thanks, but whenever I try anything related to ipchains, I get the
Incompatible with this kernel response. Although iptables -L tells me:
Chain
on linux 7.3 u have to type setup without quotes and go in services and
disable ipchains and iptables if u dont want to use it
at the same time if u want to use ftp u will have to copy telnet file in
/etc/xinetd.d/telnet to /etc/xinetd.d/ftp and edit the ftp file in
/etc/xinetd.d and change
List, Can you use ipchains and iptabels at the same time?
Like, for instance, use ipchains for packet filtering and iptables for MASQ?
Also, then I type iptables -L at the command promtp (Or iptables anything) I get
this error:
/lib/modules/2.4.18-5smp/kernel/net/ipv4/netfilter/ip_tables.o:
No. If you attempt to run both at the same time ipchains takes
precedence on Redhat.
Anthony
On Sun, 2002-08-25 at 17:32, Joe Giles wrote:
List, Can you use ipchains and iptabels at the same time?
Like, for instance, use ipchains for packet filtering and iptables for MASQ?
Also, then I
Is that why I'm getting that error when I try to run iptables?
Thanks
Joe
On Sun, 2002-08-25 at 15:32, Anthony Abby wrote:
No. If you attempt to run both at the same time ipchains takes
precedence on Redhat.
Anthony
On Sun, 2002-08-25 at 17:32, Joe Giles wrote:
List, Can you use
On Sun, 2002-08-25 at 17:41, Joe Giles wrote:
Is that why I'm getting that error when I try to run iptables?
Thanks
Joe
I'm not sure what error you're getting but if you have ipchains on and
iptables on at the same time, and try to run iptables, it's being
interrupted by ipchains
wrote:
On Sun, 2002-08-25 at 17:41, Joe Giles wrote:
Is that why I'm getting that error when I try to run iptables?
Thanks
Joe
I'm not sure what error you're getting but if you have ipchains on and
iptables on at the same time, and try to run iptables, it's being
interrupted
-- [ ] ipchains
[*] iptables
+--[ end: Joe Giles [EMAIL PROTECTED] ]
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list
/ipv4/netfilter/ip_tables.o failed
/lib/modules/2.4.18-5smp/kernel/net/ipv4/netfilter/ip_tables.o: insmod
ip_tables failed iptables v1.2.5: can't initialize iptables table
`filter': iptables who? (do you need to insmod?) Perhaps iptables or
your kernel needs to be upgraded.
The ipchains
On Thu, 21 Mar 2002, Ashwin Khandare wrote:
Do you know of any script that software ipchains commands to iptables ?
I don't, but I've never looked for one. Seriously though, it
shouldn't be too hard to do it by hand unless you have a truly
internecine set of rules. Doing the first few steps
an old RH 6.0 box we're using so I won't have to take everybody down
to do it.
Tnx,
Kerry
- Original Message -
From: Brian [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Tuesday, March 19, 2002 10:38 PM
Subject: RE: Ipchains vs Iptables question
the
ipchains scripts into iptables then save them? Or, is there a util that
will convert them for me?
Tnx,
Kerry
Network Administrator
Info-Power International, Inc.
3315 Silverstone
Plano, TX 75023
___
Redhat-list mailing list
[EMAIL PROTECTED]
https
is the syntax, or is there a way to import the
ipchains scripts into iptables then save them? Or, is there a util that
will convert them for me?
AFAIK, there is no conversion tool other than your brain. At best, your
ipchains would server as a template for the things you are trying to
manage
is the syntax, or is there a way to import the
ipchains scripts into iptables then save them? Or, is there a util that
will convert them for me?
I'm not aware of any tools either, but I simply wrote an iptables
version of what I wanted; the mechanics are not that dissimilar and
the syntax isn't all
different is the syntax, or is there a way to import
the
ipchains scripts into iptables then save them? Or, is there a util that
will convert them for me?
I'm not aware of any tools either, but I simply wrote an iptables
version of what I wanted; the mechanics are not that dissimilar and
the syntax
On Tue, Jan 15, 2002 at 05:39:44PM -0500, Anthony E. Greene said:
snip
You can restrict access to specific IP/hostnames using itptables too. The
fact that you use tcpwrappers instead is probably a matter of habit or
training; it's not a limitation of the software.
True. But I tend to
At 1/15/2002 03:30 PM -0800, you wrote:
But you can also restrict access to hosts in the ipchains/iptables scripts.
I use tcpwrappers also, but technically, I think it is correct, if you
blocked access at the firewall level, the request would never be seen by the
tcp wrapper daemon. ipchains
On Tue, Jan 15, 2002 at 12:12:31AM +, chas said:
Pls excuse my ignorance here but if one is using ipchains or iptables,
is tcp wrappers now redundant ? (ipchains certainly seems so much more
flexible). Anybody using both ?
Yes, I use both. tcp wrappers provides more granular acces
But you can also restrict access to hosts in the ipchains/iptables scripts.
I use tcpwrappers also, but technically, I think it is correct, if you
blocked access at the firewall level, the request would never be seen by the
tcp wrapper daemon. ipchains and iptables happen at the kernel/networking
Pls excuse my ignorance here but if one is using ipchains or iptables,
is tcp wrappers now redundant ? (ipchains certainly seems so much more
flexible). Anybody using both ?
chas
Hello Listees,
Mike answer is very good. If your using redhat 7.1 or 7.2 you can
use the setup command and go
At 12:12 AM 1/15/2002 +, chas wrote:
Pls excuse my ignorance here but if one is using ipchains or iptables,
is tcp wrappers now redundant ?
Yes, but redundancy can be a good thing.
Tony
--
Anthony E. Greene [EMAIL PROTECTED]
PGP Key: 0x6C94239D
AOL/Yahoo Chat: TonyG05
Linux. the choice
I use both, just because I figure that multiple levels of security
can't be bad. For example, if someone exploits a bug in
ipchains/iptables, they still have to get through the tcp wrappers.
But then, I'm no security expert. :)
Regards,
Ben
On Tue, Jan 15, 2002 at 12:12:31AM +, chas wrote
Anyone know how to allow ports 137, 138, and 139 go through in the
ipchains and iptables commands?
thanks.
For IPTables:
iptables -A INPUT -s xxx.xxx.xxx.xxx/yyy.yyy.yyy.yyy-i ethX -p tcp -m
tcp
--dport 137 -j ACCEPT
iptables -A INPUT -s xxx.xxx.xxx.xxx/yyy.yyy.yyy.yyy-i ethX
Anyone know how to allow ports 137, 138, and 139 go
through in the ipchains and iptables commands?
thanks.
wrote:
Anyone know how to allow ports 137, 138, and 139 go through in the ipchains and
iptables commands?
thanks.
___
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
hi
i want to setup a firewall on linux. i am thinking which one to use
IPChains or IPTables ?
Is IPTables stable enough or is IPChains more stable.
any pointers is welcome.
thanks
ashley
_
Chat with friends online, try MSN
Title: RE: IPChains vs IPTables
IMHO, iptables. That's where everything is moving towards, so you might as well do that. ipchains may not be around forever.
-Original Message-
From: ashley thomas [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 04, 2002 1:39 PM
To: [EMAIL
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Fri, 4 Jan 2002, ashley thomas posted the following:
athi
at
ati want to setup a firewall on linux. i am thinking which one to use
atIPChains or IPTables ?
atIs IPTables stable enough or is IPChains more stable.
at
atany pointers is welcome.
IPTables via kernel configurations (if you're using a RedHat supplied
2.4.x kernel, the options have already been compiled in).
On Fri, 4 Jan 2002, ashley thomas wrote:
hi
i want to setup a firewall on linux. i am thinking which one to use
IPChains or IPTables ?
Is IPTables stable enough
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chuck Mead wrote:
ati want to setup a firewall on linux. i am thinking which one to use
atIPChains or IPTables ?
atIs IPTables stable enough or is IPChains more stable.
at
atany pointers is welcome.
They're both stable IMHO. iptables is the future.
Hello Ashley,
I prefer iptables. It is definately stable, the problem is coming up with
the perfect script.
A good set of links here on both iptables and ipchains:
http://www.redhat.com/support/resources/gotchas/7.1/gotchas-71.html
Cheers
-Original Message-
From: [EMAIL PROTECTED
-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Mike Burger
Sent: Friday, January 04, 2002 1:14 PM
To: [EMAIL PROTECTED]
Subject: Re: IPChains vs IPTables
IPtables has been working fine for me...the real consideration is what
kernel version are you running. IPchains is really
enough or is IPChains more stable.
at
atany pointers is welcome.
They're both stable IMHO. iptables is the future.
It's also much more logically designed and therefore easier to wrap
your brain around. (The same guy wrote them both, and he thinks so
too.)
Iptables is stateful, ipchains
The following ipchains rules are working for kernel 2.2.x. Which are
the corresponding rules with ipbables and kernel 2.4.x?
Which modules to load?
2.2.x: working
/sbin/modprobe ip_masq_ftp
ipchains -P forward DENY
ipchains -A forward -s 192.168.0.4 -j MASQ
2.4.x: my attempt, not working
On Thu, 7 Sep 2000, Svante Signell wrote:
Date: Thu, 7 Sep 2000 09:19:33 +0200 (CEST)
From: Svante Signell [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Content-Type: text/plain; charset=us-ascii
Subject: ipchains vs iptables
The following ipchains rules are working for kernel 2.2.x. Which
57 matches
Mail list logo