Steve:
I believe you will want it set up like this:
####################
# HTTP Client (80) #
####################
/sbin/ipchains -A input -p tcp ! -y -i eth0 \
-s 0.0.0.0/0 80 -d <Your IP Address> 1024:65535 -j ACCEPT
####################
# HTTP Server (80) #
####################
/sbin/ipchains -A input -p tcp -i eth0 \
-s 0.0.0.0/0 1024:65535 -d <Your IP Address> 80 -j ACCEPT
At least this seems to work for me :)
- Mike
On Mon, 20 Dec 1999, Steve wrote:
> I am new to ipchains and am trying to write a chain to allow www access through
> port 80. I have the following 4 chains:
>
> ipchains -A input -p tcp -j DENY -s 0.0.0.0/0 -i eth0 -d 0.0.0.0/0 1:1023
> ipchains -A input -p ucp -j DENY -s 0.0.0.0/0 -i eth0 -d 0.0.0.0/0 1:1023
> ipchains -A input -p tcp -j ACCEPT -s 0.0.0.0/0 -i eth0 -d 0.0.0.0/0 80
> ipchains -A input -p udp -j ACCEPT -s 0.0.0.0/0 -i eth0 -d 0.0.0.0/0 80
>
> But I can't get in to the web server unless I comment out the 1st 2 chains.
> what am I doing wrong?
>
> TIA
> Steve
>
>
> --
> To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
> as the Subject.
>
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
