NetFilter
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Iptables problem

from [Saurabh Mehrotra] [Permanent Link][Original]
To: netfilter@lists.netfilter.org
Subject: Iptables problem
From: "Saurabh Mehrotra" <saurabh1980@gmail.com>
Date: Fri, 26 Jan 2007 16:49:25 +0530
Delivered-to: sp-com-lists@consult.net
Delivered-to: netfilter-list1@securepoint.com
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=o4JDMAPMcdRzI5ue5eUIFXwkVCalFz6TabEHnlBH6IhhuGYVGiKC/mLs2evHWp0XYYw/OHwGI7Z1IdKaeBvcuTt7kvGiY91LPO0xs4tgNqESquvHw1G4Xm19RxRAz1nYGBSN3jL1+O4pFAK+CxOp3M++LP5qyKtaveCWDj0aPbU=
List-archive: </pipermail/netfilter>
List-help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id: General discussion and user questions <netfilter.lists.netfilter.org>
List-post: <mailto:netfilter@lists.netfilter.org>
List-subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
Sender: netfilter-bounces@lists.netfilter.org 
---------- Forwarded message ----------
From: Saurabh Mehrotra <saurabh1980@gmail.com>
Date: Mon, 22 Jan 2007 21:29:46 +0530
Subject: Iptables problem help required !!!!
To: netfilter@lists.netfilter.org

Hi ,

I am using Red Hat Enterprise Linux AS release 4 (Nahant Update 3) with
Kernel 2.6.9-34.ELsmp #1

I am using Iptables for firewall .

But without firewall I m able to nslookup my own DNS server but whenever I
enabled firewall I am not able to nslookup to my own system.

And log files shows the following entry .

RULE 0 -- ACCEPT IN=lo OUT= MAC=00:00:00:00:00:00:00:00:00:00:00:00:08:00
SRC=127.0.0.1 DST=127.0.0.1 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=15607 DF
PROTO=TCP SPT=46994 DPT=25 WINDOW=32767 RES=0x00 SYN URGP=0
Jan 22 15:52:01 trench1ams crond(pam_unix)[13126]: session closed for user
root

EVEN This rule 0 is also accept rule for SSH not for deny...


I have added rule to accept my own system  traffic ...to allow any service
but still tje proble, is same ....


root@trench1 ~]# nslookup trench1
Server:         212.165.108.4
Address:        212.165.108.4#53

*** Can't find trench1ams: No answer


Please advice me how can I overcome with this problem .......


Thanks

Saurabh
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: DMZ problems, Ted Phelps
Next by Date:  iptables NEW TABLE request. WAS[Re: Catching un-DNAT'ed packets], Покотиленко Костик
Previous by Thread:  owner-Match in 2.6.20-rc5, Sebastian Claßen
Next by Thread:  Re: Iptables problem, Ted Phelps
Indexes:  [Date] [Thread] [Top] [All Lists]