El lun, 14-03-2005 a las 02:06 -0500, Praneeth Samineni escribiÃ: > Hi!I am using Iptables on a RH 30 2.4 Kernel for INPUT connections filtering, while allowing all OUTPUT.Inbound connections seems to work fine, but outbound connections fail. Connection status is SYN_SENT on the SOURCE side and SYN_RECV at the destination side, shows that ACK packets are getting filtered at INPUT chain. Does not IPTABLES allow the return packets of a connection initiated already thru IPTABLES? Are there any rules to enable this apart from manually allowing return packets on port basis everytime.Best WishesPraneeth Samineni Yes, just allow the incoming ESTABLISHED and RELATED connections. iptables -A INPUT -i <extif> -m state --state ESTABLISHED,RELATED -j ACCEPT Regards. -- Jose Maria Lopez Hernandez Director Tecnico de bgSEC jkerouac@xxxxxxxxx bgSEC Seguridad y Consultoria de Sistemas Informaticos http://www.bgsec.com ESPAÃA The only people for me are the mad ones -- the ones who are mad to live, mad to talk, mad to be saved, desirous of everything at the same time, the ones who never yawn or say a commonplace thing, but burn, burn, burn like fabulous yellow Roman candles. -- Jack Kerouac, "On the Road"
