[KLUG Members] IPChains problem

Richard Zimmerman members@kalamazoolinux.org
Fri, 7 Jun 2002 09:39:03 -0500

Previous message: [KLUG Members] IPChains problem
Next message: [KLUG Members] IPChains problem
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> -A input -s 0/0 -d 0/0 80 -p tcp -y -j ACCEPT
> -A input -s 0/0 -d 0/0 21 -p tcp -y -j ACCEPT
> -A input -s 0/0 -d 0/0 -i lo -j ACCEPT
> -A input -s ! here 1027 -p tcp -y -j REJECT
> -A input -s 0/0 -d 0/0 -i eth0 -j ACCEPT
> -A input -s thedns 53 -d 0/0 -p udp -j ACCEPT
> -A input -s 0/0 -d 0/0 -p tcp -y -j REJECT
> -A input -s 0/0 -d 0/0 -p udp -j REJECT
> If anyone has any sage advice, show me where I've simply missed
> the boat, or can otherwise reduce my evident ignorance, I'll
> be in your debt... well, not forever, but for at least a really
> long time...

   It's always been my understanding (but hey, I've been wrong before) that 
if you want the rule applied in BOTH directions, use -b before the -j ACCEPT.

   Remember though, this is coming from a guy that needs to pick up a book on 
firewalls because as hard as I'm trying to understand them, I'm still 
clueless.....

   Goose

Previous message: [KLUG Members] IPChains problem
Next message: [KLUG Members] IPChains problem
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]