Re: how to config 80 port for apache in iptables

---

• From: Thomas Woerner <twoerner@xxxxxxxxxx>
• Date: Wed, 15 Apr 2009 15:15:23 +0200

---

Nathan Huang wrote:

Hi guys
who can help me with opening 80 port for apache in iptables, I want to
access my apache server from remote computer, but I failed in config
iptables with 80 port.

First step:
echo '-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport
80 -j ACCEPT' >> /etc/sysconfig/iptables

Second step:
/sbin/service iptables restart

error:
iptables: Flushing firewall rules: [ OK ]
iptables: Setting chains to policy ACCEPT: filter [ OK ]
iptables: Unloading modules: [ OK ]
iptables: Applying firewall rules: iptables-restore: line 15 failed
[FAILED]

who can tell me what's wrong with my iptable configuration.
thanks
nathan

The chain name "RH-Firewall-1-INPUT" is obsolete and should not be used for Fedora >= 9 (system-config-firewall >= 1.2.0). Please use the chain "INPUT" instead.

If you are using system-config-firewall instead of changing /etc/sysconfig/ip*tables by hand, then your configuration changes will be persistent and will not be lost if you are using e.g. libvirt or system-config-firewall or lokkit.

The /etc/sysconfig/ip*tables files are only used to be able to feed the ip*tables services. If you do not want to use system-config-firewall and want to administer your firewall configuration on your own, you should use "lokkit --disabled". But keep in mind that you should do this before you are writing the configuration files /etc/sysconfig/ip*tables, because they will be removed in versions prior to F-11 and renamed to /etc/sysconfig/ip*tables.old with F-11 and later.

Thanks,
Thomas (the author of system-config-firewall)

--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines

---

• References:
  • how to config 80 port for apache in iptables
    • From: Nathan Huang

• Prev by Date: Re: Install F10 on a machine that has no CD/DVD drive, i.e. VPS
• Next by Date: Re: Install F10 on a machine that has no CD/DVD drive, i.e. VPS
• Previous by thread: Re: how to config 80 port for apache in iptables
• Next by thread: install.img from hard drive rather than boot.iso?
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: how to config 80 port for apache in iptables ... who can help me with opening 80 port for apache in iptables, ... access my apache server from remote computer, ... iptables with 80 port. ... who can tell me what's wrong with my iptable configuration. ... (Fedora) IPtables logging failure (multiple NICs) ... (Monitor port on Cisco switch) ... Only eth0 is able to receive all traffic using IPtables and tcpdump. ... Here are more details on my configuration: ... (comp.os.linux.networking) Re: VPN Through Firewall To Office ... while decent people will send SYNs for new connections and not send SYNs ... achieved by doing 'iptables -A INPUT -j REJECT'; ... Your configuration still allows all locally-initiated connections. ... Your configuration also does not allow active FTP; ... (comp.os.linux.security) Re: Ubuntu Router misc questions ... P.S. it would be interesting to continue discussion about ufw configuration, ... added your iptables and save iptables configuration ... Modify settings or unsubscribe at: ... (Ubuntu) Re: Mandrake Security Firewall (iptables + kernel 2.4 + DMZ + shorewall) ... > - the web interface is written in php so all the configuration is done ... > - logs for iptables, dhcp, squid, snort, prelude ... (comp.security.firewalls)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Mailing-Lists  > Fedora  > 2009-04