Re: can't ssh outside with OUTPUT (policy ACCEPT)

To:	"Martijn Lievaart" <m@rtij.nl>
Subject:	Re: can't ssh outside with OUTPUT (policy ACCEPT)
From:	"Maxim Veksler" <hq4ever@gmail.com>
Date:	Wed, 8 Aug 2007 22:35:24 +0300
Cc:	netfilter@lists.netfilter.org
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	netfilter-list1@securepoint.com
Dkim-signature:	a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=cOZMhLXgvPEgfgok/IssdV25z9axrjCjWU3EjBJfr3rNnvdrn1AkS0cLWzPhy+pxTJWTGFluu/ZGBzCUwlNc2JXgFiGJVhuxoNYF2+h2O6hCOoc+BgU9rUqLSgmoPO89ikEhDKkN/wfqTf97PbZPbpMsKaVnPIrn4p94upGWFns=
Domainkey-signature:	a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=XTbPbYGn2BCQB8sJK1OfeksxZEslEShQumI6BqAQYC7FbhKWE+jqzKxDR53yoUcFGxIZez9MecjX9iFIYQ4HHnAbUAsKJblzkojpSkQs/DHVTSTP8qvGQVUO3NhwFAhaCTERyjAUaBbDdX5KZQBrPWPJmZgqW47RscRbCktaWtA=
In-reply-to:	<46BA013D.6020709@rtij.nl>
List-archive:	</pipermail/netfilter>
List-help:	<mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id:	General discussion and user questions <netfilter.lists.netfilter.org>
List-post:	<mailto:netfilter@lists.netfilter.org>
List-subscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
References:	<b400c69a0708080942j69063e1em16ef7224f78f6fea@mail.gmail.com> <46BA013D.6020709@rtij.nl>
Sender:	netfilter-bounces@lists.netfilter.org

On 8/8/07, Martijn Lievaart <m@rtij.nl> wrote:
> Maxim Veksler wrote:
> > Hello,
> >
> > Follwing a recent theread on this list, I've configued my firewall to
> > allow incoming traffic from specific IP's only. Now I can't ssh
> > outside, could some please explain why this happening ?
> >
> > The system is redhat 4.
> >
>
> You don't allow the return packets in. Add a -m state --state
> ESTABLISHED,RELATED match as the first rule in your INPUT chain.
>

That was it, thank you very much.
How could I've debug it myself ?

> HTH,
> M4
>
>


-- 
Cheers,
Maxim Veksler

"Free as in Freedom" - Do u GNU ?

<Prev in Thread]	Current Thread	[Next in Thread>
can't ssh outside with OUTPUT (policy ACCEPT), Maxim Veksler Re: can't ssh outside with OUTPUT (policy ACCEPT), Martijn Lievaart Re: can't ssh outside with OUTPUT (policy ACCEPT), Maxim Veksler <= Re: can't ssh outside with OUTPUT (policy ACCEPT), Martijn Lievaart Re: can't ssh outside with OUTPUT (policy ACCEPT), Maxim Veksler Re: can't ssh outside with OUTPUT (policy ACCEPT), Martijn Lievaart

Previous by Date:	Re: can't ssh outside with OUTPUT (policy ACCEPT), Martijn Lievaart
Next by Date:	Re: ip_conntrack growing indefinitely, fd4
Previous by Thread:	Re: can't ssh outside with OUTPUT (policy ACCEPT), Martijn Lievaart
Next by Thread:	Re: can't ssh outside with OUTPUT (policy ACCEPT), Martijn Lievaart
Indexes:	[Date] [Thread] [Top] [All Lists]