Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I am having problem with yahoo through my redhat box. I am very new in netfilter, and maybe have missed a lot many things. Following is what I have done :
1. setup redhat firewalling through setup program, select eth1 as trusted device, allow 53:tcp,53:udp,443:tcp,115:tcp at the external interface.
2. restart IPTables
3. at the prompt, manually insert the rules (assuming my local IP is 192.168.0.1, external IP is 172.16.0.1, for devices eth1 and eth0 respectively)
Now, I can connect to MSN, but cannot connect to Yahoo (with no proxy). I can connect using proxy and using "behind firewall but no proxy", but then my voice chat doesn't work.
well, can you please give me some hint on how I can to that? As far as I can see, when I'm trying to connect with "no proxy", it is trying port 20, 21, 80 and a few more (these are common ones, and shoulnd't cause problem, right?), and then failing to connect ("not connected" state).
Also, if I'm using "no proxy but behind firewall", then it is connecting properly without allowing voice chat.
How can I check which ports it is trying to connect to?
To get the port's there are multiple ways. One way would be to allow outbound traffic, and the inbound part (using --state) and append a rule that just logs all traffic. Another way would be to Google around for ports Yahoo chat uses (it's a mix of TCP and UDP ports).
One of the things that make using log rules usefull is now you got the addresses it tries to connect to as well.
Last part of refining the rules would be to restrict traffic to those addresses and restrict to the used ports as well.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.