Open Port Range

cobolexpert · 08-31-2004, 08:08 PM

Could someone give me the correct verbage for allowing a range of ports (on UDP and TCP) through the firewall on Fedora 2? I need to let 27000 - 27040 through and I am having a hard time understanding what I need to type in.

Thank you,
JB

Capt_Caveman · 09-01-2004, 01:04 AM

As root:

iptables -I INPUT -p tcp --dport 27000:27040 -j ACCEPT
iptables -I INPUT -p udp --dport 27000:27040 -j ACCEPT

Poetics · 09-01-2004, 06:37 AM

Question though; does it matter what # rule these are? If the packets are already dropped, would the latter "Accept" rule matter? (I'm very new to iptables and am trying to learn)

Capt_Caveman · 09-01-2004, 07:26 AM

With the -I (Insert) option, the rules are automatically placed first in the ruleset. With -A (Append), they're added last and you can indeed have order number problems. However, using -I gets around that without getting overly complex.

cobolexpert · 09-02-2004, 01:46 AM

So I restarted my box and started freaking because I couldnt get to it over the ports. Obviously, after thinking, I realized I probably never saved the configuration... whats the command to save the settings? I dont see anything in --help for iptables.

Thanks

Capt_Caveman · 09-02-2004, 08:30 AM

service iptables save

or

/sbin/iptables-save > /etc/sysconfig/iptables