RE: iptables help

From: Jessica Zhu (jessica_at_mathforum.org)
Date: 05/13/05

  • Next message: Jessica Zhu: "iptables" 
    Date: Fri, 13 May 2005 16:19:20 -0400 (EDT)
To: golharam@umdnj.edu, General Red Hat Linux discussion list <redhat-list@redhat.com>

    Thanks, I did that in my new file already.

    Another question is whether there is nice rule to protect the servers from
    DoS. Since this is also our mail server, is there any way to reject spam
    through firewall.

    Jessica

    On Fri, 13 May 2005, Ryan Golhar wrote:

    > I believe you have to have COMMIT as the last line of your
    > /etc/sysconfig/iptables. This is commit the changes.
    >
    > Ryan
    >
    >
    > -----Original Message-----
    > From: redhat-list-bounces@redhat.com
    > [mailto:redhat-list-bounces@redhat.com] On Behalf Of Jessica Zhu
    > Sent: Friday, May 13, 2005 3:12 PM
    > To: redhat-list@redhat.com
    > Subject: iptables help
    >
    >
    > Hi,
    >
    > I tried to customize and set up firewall using iptables on Red Hat
    > Enterprise Linux ES release 3. The file /etc/sysconfig/iptables got
    > edited. After I finished editing, I restarted service using
    > /etc/init.d/iptables restart or service iptables restart. However,
    > though
    > it's got successfully restarted, when I checked the status, none of my
    > editing taking effection.
    > It's weired. For example, the default chain INPUT, OUTPUT and FORWARD
    > all
    > are ACCEPT, down in new iptables I edited, it's like as follows,
    >
    > *filter
    > :INPUT DROP
    > :FORWARD DROP
    > :OUTPUT ACCEPT [0:0]
    >
    > But nothing take effection after iptables got restarted. What happened?
    >
    > Jessica
    >
    > 

    -- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
  • Next message: Jessica Zhu: "iptables"

    Relevant Pages

    • Re: IPTables F*&%-up part 2
      ... > # move forwarding to top and comment out the disable line ... > iptables -X ... > # wants you to place the openings for ports ... # pop3 server--are you running a mail server for everyone? ...
      (comp.os.linux.security)
    • Re: need help setting a rule for ftp
      ... > serves as my firewall, mail server, and web server. ... If eth0 connects to your ... internal network, you'd do this (for iptables, though -i exists in iptables ...
      (comp.os.linux.security)
    • Re: my smtp server is very slow to accept connections today
      ... Check iptables, if turned on then stop it and test if problem fixed then I would guess at "Ident port 113" add it to iptables. ... My FC5 box runs a mail server. ... Check that your nsswitch.conf has an appropriate hosts entry. ...
      (Fedora)
    • Re: highly secure live CD distro
      ... and then check what iptables makes of it, ... Chain FORWARD (policy ACCEPT) ... the Chain INPUT section tells me what connections to ... Why does the script not tell iptables to DROP all packets no matter ...
      (comp.os.linux.security)
    • Re: iptables help
      ... Still no effection. ... Jessica ... >> I tried to customize and set up firewall using iptables on Red Hat ... > before you stop and restart the service. ...
      (RedHat)