From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Gilles Yue" Subject: Re: Help on IPTABLES Date: Tue, 14 Oct 2003 16:50:40 +0400 Sender: netfilter-admin@lists.netfilter.org Message-ID: <83055D4B014C9E478D2F04624B9E82CFD47A@noveldc.novelgmt.mu> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C39251.C6008EFC" Return-path: content-class: urn:content-classes:message Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: To: Joel Newkirk Cc: netfilter@lists.netfilter.org This is a multi-part message in MIME format. ------_=_NextPart_001_01C39251.C6008EFC Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Dear Joel, Browsing is working now. I have removed all chains in output and forward and starting with INPUT rules first. (Juat like u told me) =20 But I am now trying to check my mail on the box with iptables installed. Note I have opened ports 25 and 110 and tried with both sport and dport. Connection with local mail server cannot be made. Did I miss something? =20 Sorry to bother you about those basic questions but I am VERY new to iptables. =20 Thanks & Best Regards gy =20 =20 Chain INPUT (policy DROP 2858 packets, 315K bytes) pkts bytes target prot opt in out source =20 destination =20 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spt:53 =20 1 456 ACCEPT udp -- * * 0.0.0.0/0 =20 0.0.0.0/0 udp spt:53 =20 0 0 ACCEPT udp -- * * 0.0.0.0/0 =20 0.0.0.0/0 udp spt:80 =20 33 6571 ACCEPT tcp -- * * 0.0.0.0/0 =20 0.0.0.0/0 tcp spt:80 =20 0 0 ACCEPT udp -- * * 0.0.0.0/0 =20 0.0.0.0/0 udp spt:443 =20 0 0 ACCEPT tcp -- * * 0.0.0.0/0 =20 0.0.0.0/0 tcp spt:443 =20 0 0 ACCEPT tcp -- * * 0.0.0.0/0 =20 0.0.0.0/0 tcp spt:110 =20 0 0 ACCEPT udp -- * * 0.0.0.0/0 =20 0.0.0.0/0 udp spt:110 =20 0 0 ACCEPT tcp -- * * 0.0.0.0/0 =20 0.0.0.0/0 tcp spt:25 =20 0 0 ACCEPT udp -- * * 0.0.0.0/0 =20 0.0.0.0/0 udp spt:25 =20 =20 Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source =20 destination =20 Chain OUTPUT (policy ACCEPT 664 packets, 67152 bytes) pkts bytes target prot opt in out source =20 destination =20 ------_=_NextPart_001_01C39251.C6008EFC Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

Dear Joel,

Browsing is working now. I have removed all = chains in output and forward and starting with INPUT rules first. (Juat like u = told me)

= ;

But I am now trying to check my mail on the = box with iptables installed. Note I have opened ports 25 and 110 and tried with both sport = and dport. Connection with local mail server cannot be made. Did I miss = something?

Sorry to bother you about those basic = questions but I am VERY new to iptables.

Thanks & Best Regards

gy

Chain INPUT = (policy DROP 2858 packets, 315K bytes)

pkts bytes target prot opt in out source &= nbsp;

destination

0 0 ACCEPT = tcp -- * * 0.0.0.0/0 = 0.0.0.0/0 tcp spt:53

1 456 ACCEPT udp = -- * * 0.0.0.0/0 &nbs= p;

0.0.0.0/0 = udp spt:53

0 0 ACCEPT = udp -- * * 0.0.0.0/0 &nbs= p;

0.0.0.0/0 = udp spt:80

33 6571 ACCEPT tcp -- * * 0.0.0.0/0 &nbs= p;

0.0.0.0/0 = tcp spt:80

0 0 ACCEPT = udp -- * * 0.0.0.0/0 &nbs= p;

0.0.0.0/0 = udp spt:443

0 0 ACCEPT = tcp -- * * 0.0.0.0/0 &nbs= p;

0.0.0.0/0 = tcp spt:443

0 0 ACCEPT = tcp -- * * 0.0.0.0/0 &nbs= p;

0.0.0.0/0 = tcp spt:110

0 0 ACCEPT = udp -- * * 0.0.0.0/0 &nbs= p;

0.0.0.0/0 = udp spt:110

0 0 ACCEPT = tcp -- * * 0.0.0.0/0 &nbs= p;

0.0.0.0/0 = tcp spt:25

0 0 ACCEPT = udp -- * * 0.0.0.0/0 &nbs= p;

0.0.0.0/0 = udp spt:25

Chain FORWARD = (policy ACCEPT 0 packets, 0 bytes)

pkts bytes target prot opt in out source =

destination

Chain OUTPUT = (policy ACCEPT 664 packets, 67152 bytes)

pkts bytes target prot opt in out source &= nbsp;

destination

=00 ------_=_NextPart_001_01C39251.C6008EFC--