Maxim Veksler wrote:
On 8/8/07, Martijn Lievaart <m@xxxxxxx> wrote:
Maxim Veksler wrote:
Hello,
Follwing a recent theread on this list, I've configued my firewall to
allow incoming traffic from specific IP's only. Now I can't ssh
outside, could some please explain why this happening ?
The system is redhat 4.
You don't allow the return packets in. Add a -m state --state
ESTABLISHED,RELATED match as the first rule in your INPUT chain.
That was it, thank you very much.
How could I've debug it myself ?
Good question!
Add LOG rules for dropped traffic. Get out wireshark (formerly ethereal)
to see what goes on at the line. Read up on how to construct good
rulesets and maybe even on IP (no sorry, I don't have any links).
HTH,
M4
