All, I have RedHat Linux AS with IPtables 1.2.4-2, and I am trying to rsh to two different systems: 128.2.2.1 and 128.1.2.1 With the same permissions (see end of E-mail), the rsh to 128.1.2.1 succeeds, when the rsh to 128.2.2.1 fails (from Ethereal sniffing, it seems as if the ACK tag to the second three way handshake when IPTABLES is running has a wrong sequence number). Once this ACK with wrong sequence number arrives, the system waits until the client sends a FIN ACK and then finally sends the RST; but no data is ever sent. If I turn IPTABLES off, the rsh succeeds without any problems. Since the same ports are used for the authentication, it seems to me that they are not blocked. If you need the saved ethereal files, please let me know. Please help! iptables -A INPUT -s 128.1.2.1 -j ACCEPT iptables -A OUTPUT -d 128.1.2.1 -j ACCEPT iptables -A INPUT -s 128.2.2.1 -j ACCEPT iptables -A OUTPUT -d 128.2.2.1 -j ACCEPT Best regards, Erick Sanz
