On 2/6/07, Michael Pobega <[EMAIL PROTECTED]> wrote:
I've been trying to get iptables working so that I can finally have a
worthwhile client-side non-graphical firewall. So to test it out, I
typed these two commands:
/# iptables -A INPUT -p tcp --dport 80 -j ACCEPT
# iptables -A INPUT -j REJECT
> I've been trying to get iptables working so that I can finally have a
> worthwhile client-side non-graphical firewall. So to test it out, I
> typed these two commands:
>
> /# iptables -A INPUT -p tcp --dport 80 -j ACCEPT
> # iptables -A INPUT -j REJECT
>
> /And for some reason I completely lost
>Subject: iptables usage
>From: Michael Pobega <[EMAIL PROTECTED]>
>Date: Tue, 06 Feb 2007 22:01:23 -0500
>To: debian-user@lists.debian.org
>
>I've been trying to get iptables working so that I can finally have a
>worthwhile client-side non-graphical firewall. So to test it out, I
>typed these two
Andrei Popescu wrote:
> On Wed, 07 Feb 2007 07:16:31 -0500
> Michael Pobega <[EMAIL PROTECTED]> wrote:
>
>
>>> P.S. You should start a new thread for new problems, you might get
>>> more answers that way
>>>
>> I thought this /was/ a new thread? :-P
>>
>
> Threading is not only done
On Tue, Feb 06, 2007 at 10:38:17PM -0500, Michael Pobega wrote:
> Douglas Allan Tutty wrote:
> > On Tue, Feb 06, 2007 at 10:01:23PM -0500, Michael Pobega wrote:
> >
> >> I've been trying to get iptables working so that I can finally have a
> >> worthwhile client-side non-graphical firewall. So t
On Wed, 07 Feb 2007 07:16:31 -0500
Michael Pobega <[EMAIL PROTECTED]> wrote:
> > P.S. You should start a new thread for new problems, you might get
> > more answers that way
> I thought this /was/ a new thread? :-P
Threading is not only done by subject, but primarily by 'In-Reply-To:'
and 'Refere
Michael Pobega wrote:
Douglas Allan Tutty wrote:
On Tue, Feb 06, 2007 at 10:01:23PM -0500, Michael Pobega wrote:
I've been trying to get iptables working so that I can finally have a
worthwhile client-side non-graphical firewall. So to test it out, I
typed these two commands:
/# ipt
On Tue, Feb 06, 2007 at 10:01:23PM -0500, Michael Pobega wrote:
> I've been trying to get iptables working so that I can finally have a
> worthwhile client-side non-graphical firewall. So to test it out, I
> typed these two commands:
>
Two things.
1. Please don't hijack threads! Start a new one
What is happening here is:
1. When you close all ports of your computer from input but port 80,
the iptables will block the http response wich isn't to your port 80.
I think that you need to close all connections to input but the
response or related packages, then you open all connections to outp
franck wrote:
> Michael Pobega wrote:
>> [...]
> Hi,
>
> What about the OUTPUT chain ? Have you set up more rules ? By default,
> iptables policy is to ACCEPT all paquets.
>
> Have a look at :
>
> iptables -L -v to see your rules.
>
> An iptables tutorial can be found here :
>
> http://iptables-tut
On Tue, 06 Feb 2007 22:38:17 -0500
Michael Pobega <[EMAIL PROTECTED]> wrote:
> Douglas Allan Tutty wrote:
> > On Tue, Feb 06, 2007 at 10:01:23PM -0500, Michael Pobega wrote:
> >
> >> I've been trying to get iptables working so that I can finally
> >> have a worthwhile client-side non-graphical
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael Pobega wrote:
> I've been trying to get iptables working so that I can finally have a
> worthwhile client-side non-graphical firewall. So to test it out, I
> typed these two commands:
>
> /# iptables -A INPUT -p tcp --dport 80 -j ACCEPT
> # ip
Douglas Allan Tutty wrote:
> On Tue, Feb 06, 2007 at 10:01:23PM -0500, Michael Pobega wrote:
>
>> I've been trying to get iptables working so that I can finally have a
>> worthwhile client-side non-graphical firewall. So to test it out, I
>> typed these two commands:
>>
>> /# iptables -A INPUT -
On Tue, Feb 06, 2007 at 10:01:23PM -0500, Michael Pobega wrote:
> I've been trying to get iptables working so that I can finally have a
> worthwhile client-side non-graphical firewall. So to test it out, I
> typed these two commands:
>
> /# iptables -A INPUT -p tcp --dport 80 -j ACCEPT
> # iptable
14 matches
Mail list logo
