about iptables

From: "ParTizan" <ParTizanPuPkin@xxxxxxxxx>
Date: 27 Apr 2006 15:45:54 -0700

Hi All,
I guess, this is a simple question, but I couldn't find an answer in
internet.

my setup:
dsl modem <---> linksys router+dhcp (192.168.1.1) <---> linux box (1
nic)

dhcp 192.168.1.1
dns1 71.0.0.1
dns1 151.0.0.2

iptables rules:
iptables -P INPUT DROP
iptables -P OUTPUT DROP
iptables -P FORWARD DROP
iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -o lo -j ACCEPT

iptables -A INPUT -i eth0 -p udp -s 71.0.0.1 --sport domain -m state
--state ESTABLISHED -j ACCEPT
iptables -A INPUT -i eth0 -p udp -s 151.0.0.2 --sport domain -m state
--state ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p udp -d 71.0.0.1 --dport domain -m state
--state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o eth0 -p udp -d 151.0.0.2 --dport domain -m state
--state NEW,ESTABLISHED -j ACCEPT

what else do I need to add to be able to browse internet from linux
box?
when I try lynx yahoo.com - it says "making http connection to
yahoo.com" and then nothing.

thanks.

.

Follow-Ups:
- Re: about iptables
  - From: Grant

Prev by Date: mms:// through PROXY -- MPlayer
Next by Date: Re: about iptables
Previous by thread: mms:// through PROXY -- MPlayer
Next by thread: Re: about iptables
Index(es):
- Date
- Thread

Relevant Pages

linux - iptable firewall DNS question
... When my firewall is active, i am unable to use name solving features from my ... iptables -P INPUT ACCEPT ... # $ipnet -> adresse ip de l'interface connectée à internet ... echo ACCES AU FIREWALL DEPUIS LOCAL ...
(comp.security.firewalls)
FTP nightmare
... The computer that's directly connected to the internet is able ... # 0.63 - Added support for the IRC IPTABLES module ... echo " External Interface: $EXTIF" ... echo " - Verifying that all kernel modules are ok" ...
(comp.os.linux.networking)
Re: squid + transparent proxying + ssl prots ?
... >> route SSH connections off the local private subnet to the internet. ... We use "net 10" for our lan. ... There is one gateway machine ... The iptables command can be used to perform a range of functions in Linux ...
(Debian-User)
Re: Connection to SonicWall VPN through Linux IPTABLES Firewall/Proxy
... I would never install something I didn't ... from the LAN and does NAT to provide access to the Internet to the ... What iptables is doing is taking packets from the LAN, ...
(comp.security.firewalls)
Re: iptables
... I realised my post was more a 'help me debug my iptables' and all the pros ... Im happy the chain that accepts ssh is working as it should ... > What i cant seem to make work is the browsing of the internet. ... > # Take care of bad TCP packets that we don't want ...
(comp.security.firewalls)