LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 06-26-2005, 12:16 PM   #1
matthewa
Member
 
Registered: Mar 2005
Distribution: Slackware 10.1
Posts: 123

Rep: Reputation: 15
Shorewall .....rules or tos?


Im having some trouble connecting to the internet after starting shorewall. As a matter of fact when I fire shorewall up I cant connect to the internet at all! Here is my default policy file and my question will follow afterwards:

#SOURCE DEST POLICY LOG LIMIT:BURST
# LEVEL
loc net ACCEPT
net all DROP info
all all REJECT info


My question is........This is the default policy setup for Shorewall which seems to block all incoming traffic. So, do I need to create a rule now or do I need to create a Type Of Service (tos) to allow things through like the internet?
 
Old 06-26-2005, 12:52 PM   #2
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
i would assume the shorewall script is smart enough to know that if you set the INPUT policy to DROP it would need to allow packets with states of ESTABLISHED or RELATED to come through in order for you to be able to properly connect to the internet...

does shorewall have a log file which you can look at to see what is getting blocked when you attempt to access the internet??
 
Old 06-26-2005, 01:12 PM   #3
matthewa
Member
 
Registered: Mar 2005
Distribution: Slackware 10.1
Posts: 123

Original Poster
Rep: Reputation: 15
Wow!That was a mouthful........I got it! Actually, all I had to do was to change the first source line to "firewall". Alls well.........thanks
 
Old 06-26-2005, 01:57 PM   #4
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
hehe... cool, man... let us know if there's anything else...

 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
shorewall config question with /etc/shorewall/rules peter72 Linux - Networking 3 01-01-2007 09:33 PM
Shorewall ignores the rules? N3K0KUN Linux - Security 3 09-06-2004 02:48 PM
shorewall - rules for multiple local sites gjmwalsh Linux - Security 9 06-19-2004 10:06 PM
Shorewall policies + rules richlawson Linux - Networking 2 06-29-2003 11:35 AM
Viruses, ipchains, dynamic rules, rules with regular expressions marktaff Linux - Security 2 09-25-2001 04:01 AM


All times are GMT -5. The time now is 10:50 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration