On 1/18/07, tamer amr <tamer_linux@xxxxxxxxx> wrote:
hi i have a strang problem why any host can ssh me in the first list but can't in the second list please i want to understand this case
Seeing as how the only difference between the two is a single rule, I would hope it's obvious where you should be looking.
2 ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh
In the first list, you're explicitly allowing "NEW" connection to the "ssh" port in. In the second list, you're simply allowing traffic for any already "ESTABLISHED" connections. Please tell me this makes sense to you. -- Jeremy L. Gaddis, MCP, GCWN http://www.linuxwiz.net/ -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
