IP table which is listed below comes with redhat 6.4 default install.

From there I am able to connect to redhat website https://cdn.redhat.com on https which I believe uses port 443.

It appears, on my company firewall port 443 is open.

But my question is, it ( port 443) is not open on the server ip table, then how come I am able to connect to redhat website and download updates etc ?



[root@redhat64-basic ~]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT icmp -- anywhere anywhere
ACCEPT all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited

Chain FORWARD (policy ACCEPT)
target prot opt source destination
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
[root@redhat64-basic ~]#

Hi,

I'm no iptables expert, but looking at what you posted it seems to be because outgoing connections are not blocked. The "REJECT all" is in the "INPUT" section not the "OUTPUT" section.

Evo2.

1 members found this post helpful.

Here it is open 443 in red hat web server's port not your machines port.where 443 acts for the servers inbound traffic not for the outbound traffic.Redhat web server listens to 443 for SSL traffic.you can clearly see using this by running netstat -natp

There you can the source socket and the destination socket...