LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Newbie (http://www.linuxquestions.org/questions/linux-newbie-8/)
-   -   Iptables issue (http://www.linuxquestions.org/questions/linux-newbie-8/iptables-issue-4175459536/)

gaurvrishi 04-25-2013 05:51 AM

Iptables issue
 
I am running tomcat server. when i check the Iptables using iptables -L then i am getting


Chain P2P (2 references)
target prot opt source destination
LOG tcp -- anywhere anywhere tcp spts:1024:65534 dpt:kazaa limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT tcp -- anywhere anywhere tcp dpt:kazaa reject-with icmp-port-unreachable
LOG tcp -- anywhere anywhere tcp spt:kazaa dpts:1024:65534 limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT tcp -- anywhere anywhere tcp spt:kazaa dpts:1024:65534 reject-with icmp-port-unreachable
LOG udp -- anywhere anywhere udp spts:1024:65534 dpt:kazaa limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT udp -- anywhere anywhere udp spts:1024:65534 dpt:kazaa reject-with icmp-port-unreachable
LOG udp -- anywhere anywhere udp spt:kazaa dpts:1024:65534 limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT udp -- anywhere anywhere udp spt:kazaa dpts:1024:65534 reject-with icmp-port-unreachable
LOG tcp -- anywhere anywhere tcp spts:1024:65534 dpt:3d-nfsd limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT tcp -- anywhere anywhere tcp dpt:3d-nfsd reject-with icmp-port-unreachable
LOG tcp -- anywhere anywhere tcp spt:3d-nfsd dpts:1024:65534 limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT tcp -- anywhere anywhere tcp spt:3d-nfsd dpts:1024:65534 reject-with icmp-port-unreachable
LOG udp -- anywhere anywhere udp spts:1024:65534 dpt:3d-nfsd limit:

and when i restart the iptables then


/etc/init.d/iptables restart
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: mangle filter [ OK ]
Unloading iptables modules: [ OK ]
Applying iptables firewall rules: [ OK ]
Loading additional iptables modules: ip_conntrack_netbios_n[ OK ]
[root@tomcat ~]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere 202.90.X.XXX
ACCEPT udp -- anywhere 118.67.x.XXX
ACCEPT udp -- anywhere 118.67.x.XXX
ACCEPT udp -- anywhere anywhere udp dpt:snmp
ACCEPT udp -- anywhere anywhere udp dpt:snmptrap
ACCEPT udp -- anywhere 118.67.x.XXX
ACCEPT udp -- anywhere 172.16.0.116
DROP udp -- anywhere anywhere
.
I don't from where those entries comes and after restarting the Iptables everything work smooth. Please tell me know

unSpawn 04-25-2013 04:04 PM

IIGC it's that crappy APF stuff again. Learn iptables and ditch APF.


All times are GMT -5. The time now is 01:08 PM.