Re: vnc port though firewall Re: VNC: vncviewer no route to host on same lan

From: Alexander Dalloz (ad+lists_at_uni-x.org)
Date: 03/28/05

  • Next message: Bernd Radinger: "Re: Fedora and trojan/viruses" 
    To: For users of Fedora Core releases <fedora-list@redhat.com>
Date: Mon, 28 Mar 2005 14:10:54 +0200

    Am Mo, den 28.03.2005 schrieb Neil Dugan um 3:15:

    > > Thanks - that was it. I added:
    > >
    > > -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 5901 -j ACCEPT
    > >
    > > to /etc/sysconfig/iptables and the Sun is shining once again.
    > >
    > I am doing the same thing but I used a different command to open the
    > port though the firewall.
    > -A RH-Firewall-1-INPUT -p tcp --dport 5901 -j ACCEPT
    >
    > As this is different from above could there be any problem using this?
    >
    > Regards Neil

    The difference between yours and Richard's iptables rule is, that he
    uses the "state" of the connection to decide about the acceptance. You
    omit that part. As the default iptables rules of the Fedora Core
    firewall setup have a rule which allows all incoming connections in
    state ESTABLISHED and RELATED, the "--state NEW" command is not really
    necessary. Although it can make the structure of the iptables rules more
    clear.

    If still in doubt Neil, feel free to ask again, as understanding the
    rules you use is elementary for securing your system's services.

    Alexander 

    -- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.10-1.770_FC2smp 
Serendipity 14:05:49 up 11 days, 11:02, load average: 0.53, 0.56, 0.49 



    


    -- 
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
  • Next message: Bernd Radinger: "Re: Fedora and trojan/viruses"

    Relevant Pages

    • RE: How to save the iptables rules for booting?
      ... need is running the command '/etc/init.d/iptables start'. ... How to save the iptables rules for booting? ... So you just need a standard symlink in /etc/rc?.d/S05iptables -> ...
      (Debian-User)
    • Re: Shutdown shortcut
      ... Neil wrote: ... > think it is either a remote script block or something similar that has now ... > close very fast, as if the actual command is being processed, but then ... Make a batch file with the same command and put PAUSE in the last line, ...
      (microsoft.public.windowsxp.general)
    • Re: Splash Screen Wont Load/Then Quick Blue Screen (to fast to re
      ... start windows normally, start in safe mode, start with command prompt. ... before I could not read my monitor at all, the last visible screen I could ... "neil" wrote: ...
      (microsoft.public.windowsxp.help_and_support)
    • Re: Upgrade 20GB hard drive to 40GB hard drive
      ... Another command to try then FIXMBR, ... Neil ... "Alice Chan" wrote in message ... > I tried the FIXBOOT and also tried the XP Repair Install but the same ...
      (microsoft.public.windowsxp.hardware)
    • Re: Windows XP Task Scheduler
      ... It's the TASKKILL command in Windows. ... Neil ... >newsgroup, ...
      (microsoft.public.windowsxp.accessibility)