Hi, On one machine, I have a web server running (apache) and responding on ports 80 and 443. On this machine, I have a firewall (shorewall) which blocks EVERYTHING except what I authorize, and I therefore have the rules (I have many others, but which are off topic here, so I keep it simple ):
?SECTION NEW Web(ACCEPT) net fw Web(ACCEPT) fw net Everything works perfectly. EXCEPT that in the firewall logs, I realize that I have lots of outgoing requests rejected with SOURCE ports 80 and 443. And I don't understand why these requests are sent, nor why rejecting them is not not at all blocking the operation of the web server. Oct 26 03:57:04 myserver kernel: [1567341.969608] fw-net REJECT IN= OUT=eth0 SRC=myipserver DST=oneclientip LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=443 DPT=37615 WINDOW=0 RES=0x00 RST URGP=0 Note that I have exactly the same question with the mail server and ports 25,110,143,465,993,995. I'm trying to understand, not necessarily to correct something if it's not useful. _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
