disable the firewall

velu M · 10-22-2009, 07:13 AM

Hi

I am fasing a proble to disable the firewall in debian linux in command prompt

Pls

Send the commands

Thanking you

kirukan · 10-22-2009, 07:19 AM

http://www.linuxquestions.org/questi...rewall-461587/

abefroman · 10-23-2009, 01:19 AM

iptables -L to list
iptables -F to clear

win32sux · 10-23-2009, 03:00 AM

Quote:

Originally Posted by abefroman

iptables -L to list
iptables -F to clear

Keep in mind that only handles the filter table. If you really wanna wipe everything down you'll need to take care of the other tables too. FWIW, I've been using this script for years:

Code:

#!/bin/sh

IPT="/sbin/iptables"

$IPT -P INPUT ACCEPT
$IPT -P FORWARD ACCEPT
$IPT -P OUTPUT ACCEPT

$IPT -t nat -P PREROUTING ACCEPT
$IPT -t nat -P POSTROUTING ACCEPT
$IPT -t nat -P OUTPUT ACCEPT

$IPT -t mangle -P PREROUTING ACCEPT
$IPT -t mangle -P INPUT ACCEPT
$IPT -t mangle -P FORWARD ACCEPT
$IPT -t mangle -P OUTPUT ACCEPT
$IPT -t mangle -P POSTROUTING ACCEPT

$IPT -t raw -P PREROUTING ACCEPT
$IPT -t raw -P OUTPUT ACCEPT

$IPT -F
$IPT -F -t nat
$IPT -F -t mangle
$IPT -F -t raw

$IPT -X
$IPT -X -t nat
$IPT -X -t mangle
$IPT -X -t raw

$IPT -Z
$IPT -Z -t nat
$IPT -Z -t mangle
$IPT -Z -t raw

Jim Bengtson · 10-23-2009, 08:59 AM

Quote:

$IPT -P INPUT ACCEPT
$IPT -P FORWARD ACCEPT
$IPT -P OUTPUT ACCEPT

Just curious...why do you use "default accept" instead of "default deny"?

win32sux · 10-23-2009, 06:42 PM

Quote:

Originally Posted by Jim Bengtson

Just curious...why do you use "default accept" instead of "default deny"?

Because the script's intention is to completely disable the firewall (or more precisely, to return it to a pristine state). It flushes all built-in chains, deletes all user-built chains, and sets all policies to ACCEPT.