On January 26, 2004 05:52 pm, Christian Unger wrote: > Hi > > I'm running Linux 2.6.1 and iptables 1.2.8 ... there are a few issues that > are a mistery to me. > > Iptables comes with the kernel? or does the kernel merely contain support, > and then an additional program sorta, jacks into that support? > > Is there a reason why after running a firewall i might not be able to start > java applications (eg jEdit 4.1) - I get a splash screen but it just sits > there. this is using Java 1.4.2_01 (as shipped with Slackware 9.1) netfilter firewall is made up of two separate but related components. kernel modules do the low level stuff and a userspace application manipulates what the low level stuff actually does. the "iptables" command is part of the userspace component -- look for xxxx/lib/iptables directory to see the userspace libraries --- look for xxxx/bin/iptable* xxx/bin/ip6table* to find the executables. /lib/modules/*/kernel/net/ipv*/netfilter contains the kernel module components -- yours might be built into the kernel. Yes ... java needs to talk through 127.0.0.1 and blocking all traffic through lo and the ip address 127.0.1 will cause problems. Alistair.
