On 26/06/06, Thaths <[EMAIL PROTECTED]> wrote: > On 6/25/06, Ajitabh Pandey <[EMAIL PROTECTED]> wrote: > > # Allow NTP traffic through > > $IPT_CMD --append INPUT -p udp --sport 123 --dport 123 --jump ACCEPT > > # Allow NTP traffic through > > $IPT_CMD --append OUTPUT -p udp --sport 123 --dport 123 --jump ACCEPT > > Do not specify both sport and dport. Instead make these into four > lines - 2 for sport and 2 for dport. Make sure one of them is for the > INPUT chain and the other is for OUTPUT chain.
I believe NTP works like DNS - both the client and server binds on (UDP) port 123. If both sport and dport are not 123, chances are that it is not legitimate traffic. Binand Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ linux-india-help mailing list linux-india-help@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/linux-india-help
