On 4/5/06, Marián Hercek <[EMAIL PROTECTED]> wrote:
Try to drop firewall rules AND set default policy in INPUT chain to ACCEPT too. Here it is:
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT tcp -- 0.0.0.0/0 193.87.59.9 tcp dpt:25
ACCEPT tcp -- 0.0.0.0/0 193.87.59.9 tcp dpt:20
ACCEPT tcp -- 0.0.0.0/0 193.87.59.9 tcp dpt:21
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:143
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:443
--some snipped out---
Chain FORWARD (policy DROP)
ACCEPT udp -- 192.168.1.0/24 0.0.0.0/0 udp dpt:53
ACCEPT tcp -- 192.168.1.0/24 0.0.0.0/0 tcp dpt:20
ACCEPT tcp -- 192.168.1.0/24 0.0.0.0/0 tcp dpt:21
ACCEPT tcp -- 192.168.1.0/24 0.0.0.0/0 tcp dpt:80
ACCEPT tcp -- 192.168.1.0/24 0.0.0.0/0 tcp dpt:110
ACCEPT udp -- 192.168.1.0/24 0.0.0.0/0 udp dpt:110
ACCEPT tcp -- 192.168.1.0/24 0.0.0.0/0 tcp dpt:123
ACCEPT udp -- 192.168.1.0/24 0.0.0.0/0 udp dpt:123
ACCEPT tcp -- 192.168.1.0/24 0.0.0.0/0 tcp dpt:443
ACCEPT tcp -- 192.168.1.0/24 0.0.0.0/0 tcp dpt:873
ACCEPT udp -- 192.168.1.0/24 0.0.0.0/0 udp dpt:873
ACCEPT tcp -- 192.168.1.0/24 0.0.0.0/0 tcp dpt:993
ACCEPT udp -- 192.168.1.0/24 0.0.0.0/0 udp dpt:993
ACCEPT tcp -- 192.168.1.0/24 0.0.0.0/0 tcp dpt:995
ACCEPT udp -- 192.168.1.0/24 0.0.0.0/0 udp dpt:995
--some snipped out---
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
-------------------------------------------------------------------------
Table NAT
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
SNAT all -- 192.168.1.0/24 anywhere to:--snipped out
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
