LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 08-27-2005, 11:07 AM   #1
props666999
Member
 
Registered: Oct 2003
Location: Greece
Posts: 260

Rep: Reputation: 30
iptables configuration


Hello

i cannot understand something thereofore clarification is
required and would be really appreciated.

I've got all the chains (input,forword,output) by default to drop

to use amule i have opened 4662 tcp and udp

when i go to grc.com and scan my ip everything is stealthed
when emule setting is commended hence does not work

but when amule hall works grc.com reports all my ports
closed rather than stealthed as before and 631 and 113 ports are
reporting open.

the rule to amule function properly is as follows:

IPTABLES -A INPUT -p tcp --dport 4662 -j ACCEPT
IPTABLES -A INPUT -p udp --dport 4662 -j ACCEPT

ok i can understand 4662 to listen open but why the rest of them

thanks
 
Old 08-27-2005, 02:59 PM   #2
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,535

Rep: Reputation: 148Reputation: 148
631 is ipp (internet printing - printer sharing), 113 is ident. Standard but should not be there is they're blocked (check it twice). See yourself if they're blocked. Comment out the rule to accept connections on 'lo' interface (if you have such one) and run
telnet 127.0.0.1 113
and later
telnet 127.0.0.1 631
What do you get from the commands? Error is a good thing.
 
Old 08-27-2005, 05:42 PM   #3
props666999
Member
 
Registered: Oct 2003
Location: Greece
Posts: 260

Original Poster
Rep: Reputation: 30
i get the followings

Code:
telnet 127.0.0.1 113
Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape character is '^]'.

Code:
telnet 127.0.0.1 631
Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape character is '^]'.
 
Old 08-28-2005, 02:32 PM   #4
Mara
Moderator
 
Registered: Feb 2002
Location: Grenoble
Distribution: Debian
Posts: 9,535

Rep: Reputation: 148Reputation: 148
It means they're open. That's not good. Run 'netstat' and see which services have open ports. Do you have cups or samba?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
iptables configuration help Alien#007 Linux - Networking 1 08-12-2005 01:32 PM
IPTables Configuration shaileshjain Linux - Networking 2 04-07-2005 12:16 AM
iptables configuration tungaw2001 Linux - Networking 2 04-15-2004 03:01 PM
Iptables configuration Salihou Linux - Networking 2 09-24-2003 02:26 PM
iptables configuration know Linux - Networking 2 05-25-2003 04:55 PM


All times are GMT -5. The time now is 01:16 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration