Can't get on internet when firewall activated in Xandros
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Can't get on internet when firewall activated in Xandros
I noticed under internet in Xandros that there was a Firewall Wizard. When I run it (and activate the firewall) I can't get an internet connection. I'm using a cable connection through a hub. If I turn the firewall off, I get online just fine.
Anyway, does this mean I am not running any kind of firewall? How neccessary is a firewall when using Xandros as Linux is supposed to be designed to be secure? Lastly how do I setup the firewall to work?
for a home computer, nnot running any web servers, a simple firewall will do.
i use
Code:
iptables -F INPUT
iptables -F OUTPUT
iptables -A INPUT -i lo -j ACCEPT
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -P INPUT DROP
iptables -P OUPUT DROP
this firewall allows any outgoing connections, and drops all incomming connection attempts.
then you just need to poke a few holes for anything that needs to accept new connections like maybe for multiplayer game servers like UT-2004 with c rule like
Code:
iptables -A INPUT -p tcp --dport <ut2004-port> -m state --state NEW -j ACCEPT
what firewall rules are you using ?
run iptables -vL when the firewall is running and post output here.
to begin a code block put the word code in square brackets. like [ code ] without the spaces.
to end a code block put /code in square brackets.
That output means you have no firewall rules for incomming packets.
No rules for forwarding packets, and No rules four outgoing packets.
in other wise un-restricted netwok, firewall is not doing anything.
did you remember ot start the firewall before running iptables -vL ?
if you star your firewall, then run post the iptbales output, we should be able to find out whats wrong.
i am guessing you are accidently restricing web browser output...
or the input is not correctly handling what we call RELATED / ESTABLISHED traffic.
Anyway, to answer your first question... running a firewall is not needed unless you run a server of some kind, but most poeple turn it on anyway, just in case.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.