On Thu, 2003-08-28 at 02:35, Jacob Anawalt wrote: > Wow, those were some rules. It will take a bit for me to get my head > around them. Are you looking at a book on ipchains at the same time by > chance? You have so many similar rules in the input, forward and output > chains, that it reminds me of my old ipchains rules.
The rules are from Real World Linux Security by Bob Toxen. > > I need to know some stuff though. > > Email from Linux account or VMWare client works? Try both and let us know. Email from Debian works. I don't get email via Win98 - I might as well douse myself in steak sauce and jump in the tiger pit at the zoo. > > Browser from Linux account or in VMWare Win98 works? Try both and let us > know. IE from Win98 works, Mozilla from Debian doesn't. With these rules, samba couldn't restore the mapped drive I have from Win98 to /home/user. > Also: > Does ping to www.debian.org work from either/both? Debian: yes VMware: yes > Does ftp to ftp.us.debian.org work from either/both? Debian: yes VMware: yes > Does imap3 to some imap account (if you have one) work from either/both? Not a clue. I don't have an imap account. > Does https to some secure server work from either/both? Yes from IE in Win98. No from Debian Mozilla. Here's an example of the messages: Aug 28 17:35:55 ganesha kernel: DROPl:IN= OUT=eth0 SRC=192.168.2.30 DST=205.156.51.200 LEN=44 TOS=0x00 PREC=0x00 TTL=64 ID=21328 DF PROTO=TCP SPT=34131 DPT=80 WINDOW=5840 RES=0x00 SYN URGP=0 I'm curious that IN is blank. Thanks, Bret -- bwaldow at alum dot mit dot edu -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
