-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wed, 24 Sep 2003 10:20:37 +0800, Ow Mun Heng wrote: > >>It refers to line 17 of /etc/sysconfig/iptables which is a config file > >>created by iptables-save. > > my /etc/sysconfig/iptables config as written by lokkit.. > > What's wrong with line 17? Anything wrong with your custom kernel? > 1 # Firewall configuration written by lokkit > 2 # Manual customization of this file is not recommended. > 3 # Note: ifup-post will punch the current nameservers through the > 4 # firewall; such entries will *not* be listed here. > 5 *filter > 6 :INPUT ACCEPT [0:0] > 7 :FORWARD ACCEPT [0:0] > 8 :OUTPUT ACCEPT [0:0] > 9 :RH-Lokkit-0-50-INPUT - [0:0] > 10 -A INPUT -j RH-Lokkit-0-50-INPUT > 11 -A FORWARD -j RH-Lokkit-0-50-INPUT > 12 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 80 --syn -j ACCEPT > 13 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 22 --syn -j ACCEPT > 14 -A RH-Lokkit-0-50-INPUT -i lo -j ACCEPT > 15 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 0:1023 --syn -j REJECT > 16 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 2049 --syn -j REJECT > 17 -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 0:1023 -j REJECT > 18 -A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 2049 -j REJECT > 19 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 6000:6009 --syn -j REJECT > 20 -A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 7100 --syn -j REJECT > 21 COMMIT No error in there. Try this at the command-line after booting your custom kernel. $ su - # iptables-restore /etc/sysconfig/iptables and see whether you get any error. If not you need to tell us more about what you refer to in the subject line. - -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/cRGv0iMVcrivHFQRAiKvAJ4jgxQszmRyoS7D5Xenorid4edGJgCfYvRF J68xJOgAST9IPi9symVFuy4= =7V3i -----END PGP SIGNATURE----- -- Shrike-list mailing list Shrike-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/shrike-list
