Hi all,
I have a fairly odd situation here, at least to me who are no expert.
I have a firewall on my network which works with IPTables, it has allways worked fine.
a short while ago, don't know when exactly, or due to which event that I might have changed... I lost acces via UDP ports,
So I had to change my OpenVPN to tcp, and worked...,
but I still need to use UDP ports for other things like connecting a SIP phone (port UDP 5060).
Since it wasn't working, I flushed all rules and accepted all with the following:
iptables -P INPUT ACCEPT
iptables -F INPUT
iptables -P OUTPUT ACCEPT
iptables -F OUTPUT
iptables -P FORWARD DROP
iptables -F FORWARD
iptables -t nat -F
echo "1" > /proc/sys/net/ipv4/ip_forward
echo "0" > /proc/sys/net/ipv4/tcp_ecn
exit
...all my other old rules from this point on
but still have udp ports closed, I checked with nmap with the following result
Starting nmap 3.81 (
http://www.insecure.org/nmap/ ) at 2006-01-04 12:34 CST
Initiating UDP Scan against my.server.net (xxx.xxx.xxx.xxx) [1 port] at 12:34
The UDP Scan took 0.01s to scan 1 total ports.
Host zeus.kinetos.net (xxx.xxx.xxx.xxx) appears to be up ... good.
Interesting ports on zeus.kinetos.net (xxx.xxx.xxx.xxx):
PORT STATE SERVICE
5060/udp closed unknown
Nmap finished: 1 IP address (1 host up) scanned in 0.190 seconds
Raw packets sent: 3 (96B) | Rcvd: 4 (140B)
My iptables -L:
root@zeus:~# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy DROP)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
BTW, I'm ussing debian sarge
I really appreciate any input