LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices

Reply
 
Search this Thread
Old 04-25-2013, 04:51 AM   #1
gaurvrishi
Member
 
Registered: Apr 2012
Posts: 45

Rep: Reputation: Disabled
Smile Iptables issue


I am running tomcat server. when i check the Iptables using iptables -L then i am getting


Chain P2P (2 references)
target prot opt source destination
LOG tcp -- anywhere anywhere tcp spts:1024:65534 dpt:kazaa limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT tcp -- anywhere anywhere tcp dpt:kazaa reject-with icmp-port-unreachable
LOG tcp -- anywhere anywhere tcp spt:kazaa dpts:1024:65534 limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT tcp -- anywhere anywhere tcp spt:kazaa dpts:1024:65534 reject-with icmp-port-unreachable
LOG udp -- anywhere anywhere udp spts:1024:65534 dpt:kazaa limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT udp -- anywhere anywhere udp spts:1024:65534 dpt:kazaa reject-with icmp-port-unreachable
LOG udp -- anywhere anywhere udp spt:kazaa dpts:1024:65534 limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT udp -- anywhere anywhere udp spt:kazaa dpts:1024:65534 reject-with icmp-port-unreachable
LOG tcp -- anywhere anywhere tcp spts:1024:65534 dpt:3d-nfsd limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT tcp -- anywhere anywhere tcp dpt:3d-nfsd reject-with icmp-port-unreachable
LOG tcp -- anywhere anywhere tcp spt:3d-nfsd dpts:1024:65534 limit: avg 30/min burst 5 LOG level crit tcp-options ip-options prefix `** P2P ** '
REJECT tcp -- anywhere anywhere tcp spt:3d-nfsd dpts:1024:65534 reject-with icmp-port-unreachable
LOG udp -- anywhere anywhere udp spts:1024:65534 dpt:3d-nfsd limit:

and when i restart the iptables then


/etc/init.d/iptables restart
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: mangle filter [ OK ]
Unloading iptables modules: [ OK ]
Applying iptables firewall rules: [ OK ]
Loading additional iptables modules: ip_conntrack_netbios_n[ OK ]
[root@tomcat ~]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere 202.90.X.XXX
ACCEPT udp -- anywhere 118.67.x.XXX
ACCEPT udp -- anywhere 118.67.x.XXX
ACCEPT udp -- anywhere anywhere udp dpt:snmp
ACCEPT udp -- anywhere anywhere udp dpt:snmptrap
ACCEPT udp -- anywhere 118.67.x.XXX
ACCEPT udp -- anywhere 172.16.0.116
DROP udp -- anywhere anywhere
.
I don't from where those entries comes and after restarting the Iptables everything work smooth. Please tell me know
 
Old 04-25-2013, 03:04 PM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,261
Blog Entries: 54

Rep: Reputation: 2841Reputation: 2841Reputation: 2841Reputation: 2841Reputation: 2841Reputation: 2841Reputation: 2841Reputation: 2841Reputation: 2841Reputation: 2841Reputation: 2841
IIGC it's that crappy APF stuff again. Learn iptables and ditch APF.
 
  


Reply

Tags
iptables


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Iptables issue. a.abdulna Linux - Newbie 9 04-04-2013 12:22 PM
[SOLVED] IPTABLES issue MarcusWebb1966 Gentoo 11 12-30-2011 07:25 AM
iptables issue Lexus45 Linux - Security 7 04-11-2010 05:17 AM
Issue with iptables SentralOrigin Linux - Networking 6 07-14-2007 03:42 PM
iptables issue rkemp Linux - Networking 3 11-29-2003 06:50 PM


All times are GMT -5. The time now is 05:12 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration