On May 12, 2003 09:11 am, Reuven Kohanim wrote: > I have been successfully using X protocol across an > ipchains gateway. I am trying to move to iptables. > Finally ,and thanks to some help that I got at this > forum, everything is working smoothly except for X. > > I am bypassing masquerading when my source/destination > are the X client/server so that I can use my > non-masqed ip address for the 'display' parameter of > say xterm application. Could anyone tell me if > iptables > does or does not supports X. > > Thanks > Reuven > > > __________________________________ > Do you Yahoo!? > The New Yahoo! Search - Faster. Easier. Bingo. > http://search.yahoo.com I've found with the simple expedient of setting appropriate rules for source IP and dest ip I can manage my X connections through Iptables. I prefer to have outside X connections initiated from within ssh ... it is more secure, and easier to manage on a per user basis, (I dont have to add a new rule for each connection site.) since ssh handles X forwarding for the client. What masquerading are you bypassing and why? -- if you are connecting to a remote site and exporting to a non routeable IP your X connection will not work ... if you are connecting internally and using your local ip, that should work ... but even then, if the ip is non routeable (or private as some call them) you might have problems. -- Alistair Tonner nerdnet.ca Senior Systems Analyst - RSS Any sufficiently advanced technology will have the appearance of magic. Lets get magical!
