methods did not work. "accept net fw icmp 8" was already in there, and I added "accept loc fw icmp 8" but ping still does not work.
I noticed I got this when I did "shorewall restart": Processing /etc/shorewall/stop ... WARNING: DISABLE_IPV6=Yes in shorewall.conf but this system does not appear to have ip6tables IP Forwarding Enabled Processing /etc/shorewall/stopped ... Terminated mean anything? ============================================================ From: Derek Jennings <[EMAIL PROTECTED]> Date: 2005/06/07 Tue PM 06:58:42 EDT To: [email protected] Subject: Re: [newbie] iptables and network programming On Tuesday 07 June 2005 21:57, [EMAIL PROTECTED] wrote: > I'm using LE2005 on a PC, KDE. > > I'm trying to learn some network programming, but I think I'm running up > against firewalls. For example, I am not able to CLI ping my own ip > address, and when running my network code, connect() to echo port on my ip > address is refused. > > On the [now questionable] advice from folks in #mandriva, I did a iptables > --flush. And promptly lost all network connectivity. But that must only > have flushed a dynamic instance of the iptables rules, or the rules get > regenerated by script on startup, because they were all there again the > next time I rebooted (luckily). > > So my questions are: > > 1. How can I access/configure whatever built-in security settings/firewall > come with Mandriva 10.2? I sincerely hope I do not have to go explicitly > mucking about with those iptables rules. > Mandriva uses shorewall to configure iptables. There is no need for you to use iptables directly. See www.shorewall.net for documentation. There is a *simple* GUI in Mandriva Control Centre to manage shorewall. Editing the shorewall files by hand gives better control and they are well documented. > 2. How can I temporarily enable specific ip addresses (e.g. my own)/ports > for pinging, connect()'s, and other Sockets API operations? Shorewall by default disables ping. To enable it edit /etc/shorewall/rules and add the line ACCEPT net fw icmp 8 to allow ping from the internet or ACCEPT loc fw icmp 8 to allow ping from the local network After editing the file run shorewall restart from a root terminal HTH derek -- www.jennings.homelinux.net http://twiki.mdklinuxfaq.org ============================================================
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
____________________________________________________ Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com ____________________________________________________
