firewall woes
Hi, when I do ifup eth0, I get the following:
Determining IP information for eth0...External network device eth0 is not ready. Aborting.. iptables: No chain/target/match by that name iptables: No chain/target/match by that name done. When I do ifdown eth0, I get the following: /sbin/ifdown: line 64: kill: (6164) - No such process RTNETLINK answers: No such device or address RTNETLINK answers: No such device or address Nevertheless, they work sufficiently to bump eth0 in and out of the ifconfig listing. I am using firestarter as a firewall; chkconfig --list gives me (selected): Code:
firestarter 0:off 1:off 2:on 3:on 4:on 5:on 6:off Thanks |
Firestarter is only a frontend for iptables. To see your rules run:
iptables -nL You may want to look at the script and insert a few echo statements so that you can see where it is going wrong. |
I don't like the raw iptables - scary! I installed shorewall instead of firestarter, and set it up as follows:
interfaces: loc eth0 detect dhcp (eth0 in loc zone) policy: loc net ACCEPT dmz net ACCEPT net all DROP info # # THE FOLLOWING POLICY MUST BE LAST # all all REJECT info (loc --> net should work) However, when I start it I can't browse anywhere on the web. Here's part of the shorewall check output; it concerns me that "net" is empty...is this the culprit? Thanks Code:
Shorewall has detected the following iptables/netfilter capabilities: |
All times are GMT -5. The time now is 03:55 AM. |