On Sun, 2007-11-25 at 11:38 -0800, ash sids wrote: > HI > > I have a debian system (192.168.200.4), the firewall on that as is shown ... > I am trying to run xclock from 192.168.200.2 using putty and XMING > ...strangley enough with the following set up; xclock fails to start . > As soon I change the policy on INPUT chain to ACCEPT , xclock starts working... > > Anybody would have any idea why this is happening... Perhaps do some logging. I am thinking after the ACCEPT rule in the INPUT chain, this would (of course) be before the DROP policy. Then you could see what is being dropped. > > # iptables -L > Chain INPUT (policy DROP) > target prot opt source destination > ACCEPT 0 -- 192.168.200.2 anywhere > Chain FORWARD (policy ACCEPT) > target prot opt source destination > Chain OUTPUT (policy ACCEPT) > target prot opt source destination > ACCEPT 0 -- 192.168.200.4 anywhere > ACCEPT 0 -- anywhere anywhere state > RELATED,ESTABLISHED -- Matt Zagrabelny - mzagrabe@xxxxxxxxx - (218) 726 8844 University of Minnesota Duluth Information Technology Systems & Services PGP key 1024D/84E22DA2 2005-11-07 Fingerprint: 78F9 18B3 EF58 56F5 FC85 C5CA 53E7 887F 84E2 2DA2 He is not a fool who gives up what he cannot keep to gain what he cannot lose. -Jim Elliot
Attachment:
signature.asc
Description: This is a digitally signed message part
