-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sunday 09 December 2001 07:56 am, Ragnar Wiencke wrote: > Hi guys. > > I just installed a RH 7.1 server installation. Now it blokked telnet, > ftp, http, nttp and ssh.
Did you configure a firewall at install time? > But I got confused reading about IPCHAINS, IPTABLES and IPFWADM. Can > you guys explain in few words what does what on my machine? The firewall set up at install will use ipchains. Ipchains and ipfwadm will both be depreciated over time, in favor of iptables. > If I do a IPTABLES -L I get a screenful of errors. The iptables module trying to load, while the ipchains module is already loaded, most likely. The will not peacefully co-exist, only one can be loaded at a time. > If I do IPCHAINS -L > I get a list that shows me a lot of things I don't understand yet. And > I do IPCHAINS -F to get access to the machine with SSH. These are most likely the rules set up by the installer. You can run /usr/sbin/lokkit, and edit them using the same tool that created them at install. > As I understand it IPCHAINS is for kernels 2.2 and IPTABLES is for > kernels 2.4 but according to the error message it doesn't run. Ipchains compatability is still built into the kernel. Iptables has more features, and will eventually replace ipchains. To use iptables, you can: Stop using ipchains- /sbin/service ipchains stop /sbin/chkconfig ipchains off /sbin/rmmod [all ipchains related modules] Now, you should be able to insert the iptables module. Assuming that works, create your rules, run /sbin/iptables-save Then, chkconfig iptables on. Ok, that's a rough outline, but should get you started. Hope it helps, - -D - -- pgp key: http://www.tuxfan.homeip.net:8080/pgpkey.txt - -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE8E3JxeMAUbzJhSVcRAvDnAKDClH46f1RzlqFUbzPfucrCEkTHwgCeKNbs 4CyLugzaHwWYohTppBuB4Eo= =Xu2x -----END PGP SIGNATURE----- _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
