First idea is kill ipchains if you want ftp to work. Go to iptables and do NOT look back. Ipchains is an emulation using IPTables, poorly, under the 2.4 kernels. You can't load the modules you need to proeprly use ftp. {^_^} ----- Original Message ----- From: "Vasyl Kenyuk" <vasyl@web.de> > Hi! > I'm using RedHat 7.3, and I would to allow only www input/output traffic > (no ftp, telnet, ssh, etc.). There are no reason to do that, but I wonna > learn more about firewalls. So I got the answer, I must make > > # Default Policy I/O DROP > > ipchains -P INPUT DENY > > ipchains -P OUTPUT DENY > > > > # Rules > > ipchains -A INPUT -i eth0 -p tcp -d my_ip --dport 80 -j ACCEPT > > ipchains -A OUTPUT -i eth0 -p tcp -d my_ip --dport 80 -j ACCEPT > > So, but it does not works. > Have enyone an idea, why? I'm using Apache as Web Server. > Thanks, Vasyl -- Psyche-list mailing list Psyche-list@redhat.com https://listman.redhat.com/mailman/listinfo/psyche-list