[H-GEN] Need a 2nd (3rd...) opinion.
Marshall, Joshua
marshallj at switch.aust.com
Tue Jul 24 19:39:59 EDT 2001
[ Humbug *General* list - semi-serious discussions about Humbug and ]
[ Unix-related topics. Please observe the list's charter. ]
[ Worthwhile understanding: http://www.humbug.org.au/netiquette.html ]
>Sheesh< Accidentally bumped the send button... Here's the full version.
Hi Martin,
A few comments on your configuration:
1. You don't have a default policy for the output chain. You may wish to set
this to ACCEPT.
2. You have specified the ports in the wrong direction for the services, that's
why you are seeing the port 25 and 80 open.
e.g. Change:
$IPBIN -A input -p tcp -d $NIC 80 -j ACCEPT
to
$IPBIN -A input -p tcp -d $NIC -s 0.0.0.0/0 80 -j ACCEPT
3. Try logging the denied rules by adding the -l flag. This will help in any
debugging of connections that mysteriously don't work.
Regards,
Josh Marshall.
--
* This is list (humbug) general handled by majordomo at lists.humbug.org.au .
* Postings to this list are only accepted from subscribed addresses of
* lists 'general' or 'general-post'.
More information about the General
mailing list