Vasyl, That particular question belongs on the Valhalla-list which is for Redhat 7.3. I'm sure many of your questions could be answered in the Linux HOWTO documents. Take your time in learning about Linux, reading the background documentation on how the underlying system works. http://www.tldp.org/docs.html For example when I implemented Firewalls on my system I just used the Redhat lokkit utility to create my custom firewall rules for ipchains/iptables. Then I looked at the rules and tried to determine what firewall rules were implemented. I selected various services and added them to my firewall (using lokkit) and repeated the process until I started to understand how the rules worked. It took me a few weeks until I felt comfortable enough with ipchains and iptables to actually apply them to a production system. > --Luke > --Computer Science Sysadmin, MSU Bozeman > --admin(AT)cs.montana.edu 994-3931 > -----Original Message----- > From: psyche-list-admin@redhat.com [mailto:psyche-list-admin@redhat.com] > On Behalf Of Vasyl Kenyuk > Sent: Friday, January 17, 2003 9:31 AM > To: psyche-list@redhat.com > Subject: Ipchains > > Hi! > I'm using RedHat 7.3, and I would to allow only www input/output traffic > (no ftp, telnet, ssh, etc.). There are no reason to do that, but I wonna > learn more about firewalls. So I got the answer, I must make > > # Default Policy I/O DROP > > ipchains -P INPUT DENY > > ipchains -P OUTPUT DENY > > > > # Rules > > ipchains -A INPUT -i eth0 -p tcp -d my_ip --dport 80 -j ACCEPT > > ipchains -A OUTPUT -i eth0 -p tcp -d my_ip --dport 80 -j ACCEPT > > So, but it does not works. > Have enyone an idea, why? I'm using Apache as Web Server. > Thanks, Vasyl > > > > > > > -- > Psyche-list mailing list > Psyche-list@redhat.com > https://listman.redhat.com/mailman/listinfo/psyche-list -- Psyche-list mailing list Psyche-list@redhat.com https://listman.redhat.com/mailman/listinfo/psyche-list
