On Mon, 2002-11-11 at 14:15, Clint M. Sand wrote: > Greetings. > > I have a Redhat 7.1 box that acts as a main router/gateway for several > segments on my network. It is currently filtering on each interface > using ipchains. I would like to migrate these services to iptables to > take advantage of the ftp connection tracking module and other stateful > matching features. > > I migrated my ruleset, hacked up the redhat init script to load my > script on boot and tried it out on the box. The script loads fine with > no errors, and all the clients on each segment work as expected, even > active ftp. > > The problem is, once the script is loaded, even though network-wise > everything is fine, i can no longer login at the console on any tty! > (ctrl+alt+f2 for example) I enter my username, and hit enter and it just > goes into nevernever land. If i log out of the tty that i was in to > activate iptables, i'm also unable to log back in on that one either. I > have to kill the power to the box and boot single user and switch back > to ipchains to restore the box back to production. > > I have a test box with very similar hardware which is also running rh > 7.1 and i'm not able to duplicate the problem on it. Both of these boxes > use redhats "up2date" and have all the latest security and bug patches > applied. > > Anyone have any ideas on what might be causing this? I have posted all > my rules, my init script, dmesg and iptables version here: > > http://neotrance.dyndns.org/~schwack/iptables/ > > ANY help would be GREATLY appreciated. > > Thanks, > > Clint What type of authentication methods are you using? Have you done anything to nsswitch or the pam.d config files? Did you touch the /etc/inittab file? What do you have in your .bash_profile and /etc/bashrc ? -Ben.
