On Sat, 2003-08-09 at 14:57, Phil Campaigne wrote:
Jason Dixon wrote:
As root, run "/sbin/service iptables stop". Try your printer again.
Hi Jason, That was it! Thank you , thankyou thankyou!
Does the iptables duplicate the function of the NAT in my hardware router? If so do I loose any other functionality by stoping the iptables. I assume that this stops RH's firewall. is this correct?
IPtables is a stateful packet filtering firewall. Yes, it can provide NAT support, but it doesn't sound like you need it. Post your firewall ruleset, and we can show you what rule you need to add. Your ruleset can be found in /etc/sysconfig/iptables.
Hi Jason, Ok, here is the contents of my /etc/sysconfig/iptables:
# Firewall configuration written by lokkit
# Manual customization of this file is not recommended.
# Note: ifup-post will punch the current nameservers through the
# firewall; such entries will *not* be listed here.
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:RH-Lokkit-0-50-INPUT - [0:0]
-A INPUT -j RH-Lokkit-0-50-INPUT
-A RH-Lokkit-0-50-INPUT -p udp -m udp -s 0/0 --sport 67:68 -d 0/0 --dport 67:68 -i eth0 -j ACCEPT
-A RH-Lokkit-0-50-INPUT -p udp -m udp -s 0/0 --sport 67:68 -d 0/0 --dport 67:68 -i eth1 -j ACCEPT
-A RH-Lokkit-0-50-INPUT -i lo -j ACCEPT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 0:1023 --syn -j REJECT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 2049 --syn -j REJECT
-A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 0:1023 -j REJECT
-A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 2049 -j REJECT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 6000:6009 --syn -j REJECT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 7100 --syn -j REJECT
COMMIT
Looks kind of cryptic to me! Thanks, Phil
-- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
