LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 10-22-2005, 08:21 AM   #1
Niceman2005
Member
 
Registered: Nov 2004
Distribution: Fedora Core 2
Posts: 330

Rep: Reputation: 30
Drop connections to port 80 at firewall machine also drop at protected network?


Dear friends,


If I do not accept connections to port 80 of my firewall machine, does it mean all connections to port 80 within the protected network will not work also?

I was troubleshooting my proxy this morning, I allowed port 80 http connections to the protected network but the internet connection didn't go through. After I inserted a script to allow port 80 http connection to the firewall machine itself, the internet started to work.

thanks for taking time helping!

Regards
Ah fong
 
Old 10-22-2005, 03:37 PM   #2
bulliver
Senior Member
 
Registered: Nov 2002
Location: Edmonton AB, Canada
Distribution: Gentoo x86_64; Gentoo PPC; FreeBSD; OS X 10.9.4
Posts: 3,760
Blog Entries: 4

Rep: Reputation: 77
Maybe you need to describe your network better, but it seems you want to drop connections from your external interface (ie: the one attached to the internet) and accept them from your internal interface (the one attached to your protected network)
 
Old 10-27-2005, 08:21 AM   #3
Niceman2005
Member
 
Registered: Nov 2004
Distribution: Fedora Core 2
Posts: 330

Original Poster
Rep: Reputation: 30
Yeah, thats what i am trying to do. On the firewall machine itself i don't want it to be able to browse but I want the LAN computers that it protects to be able to browse internet.....

I am really confused about INPUT Chain and forward chain...I used to think that anything to do with the firewall machine itself are controlled at the INPUT chain, anything to do with the machines it protects are related to FORWARD chain. But seems like that idea is wrong.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
drop packets for specific port with iptables ohcarol Linux - Security 1 07-03-2005 10:48 AM
Network drop out jolphil Mandriva 3 01-22-2005 11:01 PM
iptables - drop all -> allow needed OR allow all -> drop specific lucastic Linux - Security 5 12-21-2004 02:07 AM
Drop 'em at the firewall Crashed_Again Linux - Security 7 03-20-2003 05:22 PM
connections drop frequently carmeng Linux - General 1 12-12-2001 05:28 PM


All times are GMT -5. The time now is 10:01 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration