Is the
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT DROP
not considered the default policy and the rest of the tables considered to be turning back on only the needed services?
But of course my main problem is that my code is not opening up the web services like I thought they would.
Thanks,
Larry Nobs
At 09:54 PM 10/19/2003, you wrote:
On Sun, Oct 19, 2003 at 08:26:13PM -0500, lrnobs wrote:
> I have the following iptables basically borrowed from
> http://www.sns.ias.edu/~jns/security/iptables/rules.html but I need to open
> up access to a web site running with Tomcat and Apache.
>
> I tried to modify it (in bold) below to open up access to my web site but I
> am locked out. [snip]
Firstly, IMO, any iptables ruleset that does not declare a default policy, as is the case here, should be rewritten. Despite that we do not really have enough information to help you. Is this a standalone box? Is it behind a router/firewall?
-- Jack Bowling mailto: jbinpg@xxxxxxx
-- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
-- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
