Hi, You can write a simple iptables rule for allowing access on port 80 with the following command, # iptables -A INPUT -p tcp --dport 80 -j ACCEPT # iptables -A INPUT -p udp --dport 80 -j ACCEPT
----------- Muzaffar Ansari +91 9224339939 [EMAIL PROTECTED] ----- Original Message ---- From: Agnello George <[EMAIL PROTECTED]> To: [email protected] Sent: Thursday, September 13, 2007 5:50:46 PM Subject: [linuxvadapav] iptables issue HI I have a (website ) behind my filrewall, but cannot connect to it when my firewall is on , but when i stop my fire wall ( /etc/ini.d/iptables stop ) I am able to view my website. My firewall setting is as follows from ( /etc/sysconfig/ iptables) ############ ######### ######### ######### ######### ####### Firewall configuration written by system-config- securitylevel # Manual customization of this file is not recommended. *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :RH-Firewall- 1-INPUT - [0:0] -A INPUT -j RH-Firewall- 1-INPUT -A FORWARD -j RH-Firewall- 1-INPUT -A RH-Firewall- 1-INPUT -i lo -j ACCEPT -A RH-Firewall- 1-INPUT -p icmp --icmp-type any -j ACCEPT -A RH-Firewall- 1-INPUT -p 50 -j ACCEPT -A RH-Firewall- 1-INPUT -p 51 -j ACCEPT -A RH-Firewall- 1-INPUT -p udp --dport 5353 -d 223.0.0.231 -j ACCEPT -A RH-Firewall- 1-INPUT -p udp -m udp --dport 631 -j ACCEPT -A RH-Firewall- 1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT -A RH-Firewall- 1-INPUT -m state --state ESTABLISHED, RELATED -j ACCEPT -A RH-Firewall- 1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT -A RH-Firewall- 1-INPUT -j REJECT --reject-with icmp-host-prohibite d COMMIT # Generated by webmin *mangle :FORWARD ACCEPT [0:0] :INPUT ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :PREROUTING ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] COMMIT # Completed # Generated by webmin *nat :OUTPUT ACCEPT [0:0] :PREROUTING ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] COMMIT # Completed ############ ######### ######### ######### ######### ##### What changes do i need to the above setting in order to see my website ( even if the fire wall is on ) Thanks -- Warm Regards Agnello . G .Dsouza ____________________________________________________________________________________ Catch up on fall's hot new shows on Yahoo! TV. Watch previews, get listings, and more! http://tv.yahoo.com/collections/3658 [Non-text portions of this message have been removed]
