iptables configuration help!!!! slows system startup
I am running fc-9.0 x86_64
i have a squid 2.5 stable 3 running on my system i have provided following configuration for iptables 1.4 Code:
#!/bin/sh i did Code:
service iptables save NFS statd fails to start also my system responds very slowly and squid doesnt respond is it because modprobe is being initialized in the script but i did not find any similar lines in iptables.conf what is modprobe and what is it doing to my system i am a noob so do not know which files to look in to identify the problems any kind of help is very welcome please help me i am stuck with an awfully slow comp now "for now i have turned off iptables" |
Please anyone please help me eith this one!
|
Where did you find this config? And why you think it's suitable for you?
This config will drop all the connections on localhost (they are needed for any system), and I don't see any rule to alloy squid packets to pass. You should carefully read man iptables and wrote your own rules. I don't know the configuration of your system, so I can't help you. But you shoukd at least open all connections on lo interface, and connections to your squid ports from anyone who are allowed to. |
the config was found by me in a book "No.Starch.Press.Linux.Firewalls"
i think it is suitable for me becoz i have to design a firewall for my project which provides conditional access and provide an intrusion detection capability. i want to allow only the proxy port to the internal network so dropping all packets except --dport 8080 8080 is my squid port squid is working fine with the above config but only the problem with gnome how do i allow all access to lo?? will the following do? Code:
$IPTABLES -I INPUT -s lo -j ACCEPT |
All times are GMT -5. The time now is 07:00 PM. |