LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 03-19-2014, 02:25 PM   #16
Smokey_justme
Member
 
Registered: Oct 2009
Distribution: Slackware
Posts: 534

Rep: Reputation: 203Reputation: 203Reputation: 203

We're not here to reply without reading what other said in the last page (at least)... If you would have read, you would have seen that your post actually contradicts mine.. And that's fine, if it brings something new to the table or, at least, correct..

As for spoon feeding, NotionCommotion actually took my advice (and even corrected one of my lines-- correctly) and others and applied it to his needs without been spoon feed..

So, who's out of line here?
 
Old 03-19-2014, 02:43 PM   #17
prayag_pjs
Senior Member
 
Registered: Feb 2008
Location: Pune - India
Distribution: Fedora,RedHat,CentOS,Gentoo
Posts: 1,138
Blog Entries: 4

Rep: Reputation: 147Reputation: 147
You are great Mr. I am the FOOL...
 
Old 03-19-2014, 02:48 PM   #18
Smokey_justme
Member
 
Registered: Oct 2009
Distribution: Slackware
Posts: 534

Rep: Reputation: 203Reputation: 203Reputation: 203
Yeah.. bye bye now..
 
Old 03-19-2014, 03:44 PM   #19
NotionCommotion
Member
 
Registered: Aug 2012
Posts: 536

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by Smokey_justme View Post
No, it shouldn't.. Please read his first post.. This would add a rule after a DROP rule..
So, the -A will append a rule at the bottom, correct? Please explain where the DROP rule is, and the effect by adding a rule after a DROP rule.
 
Old 03-19-2014, 04:52 PM   #20
Smokey_justme
Member
 
Registered: Oct 2009
Distribution: Slackware
Posts: 534

Rep: Reputation: 203Reputation: 203Reputation: 203
First off, in your case it is a REJECT rule ... DROP is just more common and it stood on my thoung.. DROP simply drops the package (and is actually what makes the firewall work), while REJECTS drops the package but also sends back an error message to the host that tried to connect to you.. (see: http://www.linuxtopia.org/Linux_Fire...les/x4550.html)

Basically this line:
Quote:
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited
is equivalent to a command line like:
Code:
iptables -A INPUT -j REJECT --reject-with icmp-host-prohibited
Every rule put after (yes, -A appends -- puts the rule on the bottom) would be of no use, since a final action has been taken with that package..

Here's a tutorial for iptables to find out more.. https://www.frozentux.net/iptables-t...-tutorial.html
However, for starters, some small read like this should be enough: https://wiki.archlinux.org/index.php/iptables
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
how to block https using iptables pavangogineni Linux - Networking 12 03-12-2012 11:31 AM
Squid with IPTABLES not allowing https riaanc1 Linux - Newbie 1 10-07-2009 03:33 AM
how to block https using iptables pavangogineni Linux - Security 2 10-19-2006 01:49 AM
Iptables not allowing outbound https john8675309 Linux - Software 3 09-13-2004 11:41 PM
Iptables and https sturla69 Linux - Security 6 09-16-2003 11:13 PM


All times are GMT -5. The time now is 04:51 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration