-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Sun, 2 Feb 2003 16:44:00 -0800 (PST), exits funnel wrote:
> > Yes. And reply packets are not covered at all by
> > that rule. And
> > without knowing the complete set of rules, one
> > cannot comment on
> > this single rule anyway.
>
> Actually, s
On February 2, 2003 07:15 pm, Michael Schwendt wrote:
> Yes. And reply packets are not covered at all by that rule. And
> without knowing the complete set of rules, one cannot comment on
> this single rule anyway. The output of ipchains-save would be the
> least I would like to see. Btw, opening al
> Yes. And reply packets are not covered at all by
> that rule. And
> without knowing the complete set of rules, one
> cannot comment on
> this single rule anyway.
Actually, since my insert was to position 1 and my
target was ACCEPT, how could other input rules have
any affect? Or am I confused a
--- gabriel <[EMAIL PROTECTED]> wrote:
> On February 2, 2003 11:43 am, exits funnel wrote:
> > ipchains -I input -p tcp -s 192.145.23.101 --sport
> > 1:1024 -d 192.145.23.102 --dport 1:1024 -j ACCEPT
>
> i think the problem stems from the fact that you're
> only allowing unlimited
> traffic on u
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Sun, 2 Feb 2003 16:58:24 -0500, gabriel wrote:
> On February 2, 2003 11:43 am, exits funnel wrote:
> > ipchains -I input -p tcp -s 192.145.23.101 --sport
> > 1:1024 -d 192.145.23.102 --dport 1:1024 -j ACCEPT
>
> i think the problem stems from the
On February 2, 2003 11:43 am, exits funnel wrote:
> ipchains -I input -p tcp -s 192.145.23.101 --sport
> 1:1024 -d 192.145.23.102 --dport 1:1024 -j ACCEPT
i think the problem stems from the fact that you're only allowing unlimited
traffic on unpriviledged ports (i can't spell). if you want to al
Thanks a million. I am posting my IPCHIANS file as found in /etc/sysconfig
Thanks again for looking at this. This has been driving me nuts :)...
-F input
-F output
-F forward
# ANTI-SPOOFING
-A input -p all -j DENY -s 10.0.0.0/8 -i eth0 -d 0.0.0.0/0
-A input -p all -j DENY -s 127.0.0.0/8 -i eth
Hello Joe,
I have followed your prev. post. I use RedHat (7.2 upgraded to 7.3) with
ipchains. This box handles about 500 - 1000 Meg of NAT (MASQ) traffic a day.
If you would like, you can post your rules to me in private and I will have
a look at them. Maybe somewhere there is a "loop" somewhere
