Basic IPTables Question

• Previous message: Adam Boettiger: "FTP"
• Next in thread: Alexander Dalloz: "Re: Basic IPTables Question"
• Reply: Alexander Dalloz: "Re: Basic IPTables Question"
• Reply: Roy W. Erickson: "Re: Basic IPTables Question"
• Reply: Listman: "Re: Basic IPTables Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Mon, 30 Aug 2004 17:08:17 -0600
To: For users of Fedora Core releases <fedora-list@redhat.com>

Hi Folks,

        I am new to the world of IPTables and I have rules such as:

iptables -A INPUT -d 161.184.244.187 -i eth0 -p tcp -m state --state ESTABLISHED
-j ACCEPT
iptables -A INPUT -d 161.184.244.187 -i eth0 -p tcp -m state --state ESTABLISHED
-j LOG --log-prefix "IPTABLES TCP-IN" --log-level 1

        Where can I see these logs, I assumed that they would be in /var/log/messages
but nothing shows.

        Secondly on this same box that is running this firewall I have a mail server
that just sends mail out, if I try to send a message from the box to the local
smtpd on the box it just sits there, these are all my rules:

-A INPUT -d 161.184.244.187 -i eth0 -p tcp -m state --state ESTABLISHED -j ACCEPT
-A INPUT -d 161.184.244.187 -i eth0 -p tcp -m state --state ESTABLISHED -j LOG
--log-prefix "IPTABLES TCP-IN" --log-level 1
-A INPUT -d 161.184.244.187 -i eth0 -p udp -m state --state ESTABLISHED -j ACCEPT
-A INPUT -d 161.184.244.187 -i eth0 -p udp -m state --state ESTABLISHED -j LOG
--log-prefix "IPTABLES UDP-IN" --log-level 1
-A INPUT -d 161.184.244.187 -i eth0 -p tcp -m state --state NEW -m tcp --dport
22 -j ACCEPT
-A INPUT -d 161.184.244.187 -i eth0 -p tcp -m state --state NEW -m tcp --dport
22 -j LOG --log-prefix "IPTABLES SSH-IN" --log-level 1
-A OUTPUT -s 161.184.244.187 -o eth0 -p tcp -m state --state NEW,ESTABLISHED -j
ACCEPT
-A OUTPUT -s 161.184.244.187 -o eth0 -p tcp -m state --state NEW,ESTABLISHED -j
LOG --log-prefix "IPTABLES TCP-OUT" --log-level 1
-A OUTPUT -s 161.184.244.187 -o eth0 -p udp -m state --state NEW,ESTABLISHED -j
ACCEPT
-A OUTPUT -s 161.184.244.187 -o eth0 -p udp -m state --state NEW,ESTABLISHED -j
LOG --log-prefix "IPTABLES UDP-OUT" --log-level 1

        What am I doing wrong, should I have a rule to allow incoming 25 on tcp, as I
have listed the full hostname in the mail settings.

        Cheers,

        Aly.

-- 
Aly Dharshi
aly.dharshi@telus.net
	 "A good speech is like a good dress
	  that's short enough to be interesting
	  and long enough to cover the subject"
-- 
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list

• Previous message: Adam Boettiger: "FTP"
• Next in thread: Alexander Dalloz: "Re: Basic IPTables Question"
• Reply: Alexander Dalloz: "Re: Basic IPTables Question"
• Reply: Roy W. Erickson: "Re: Basic IPTables Question"
• Reply: Listman: "Re: Basic IPTables Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages DRBD ... Aly S.P Dharshi ... "A good speech is like a good dress ... To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list ... (Fedora) Syslog ... automount.log via syslog facility, how would one do this, is there a doc ... "A good speech is like a good dress ... unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe ... (RedHat) RE: smtp install error Debian Woody PPC ... smtp install error Debian Woody PPC ... > I am trying to re-install smtpd. ... To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org with a subject of "unsubscribe". ... (Debian-User)