Iptables blocking , well...everything
stovetenaren happyhd # iptables -L
Chain INPUT (policy ACCEPT) target prot opt source destination ACCEPT tcp -- anywhere 192.168.1.150 tcp dpt:http ACCEPT tcp -- anywhere 192.168.1.150 tcp dpt:https DROP all -- anywhere 192.168.1.150 Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination ACCEPT tcp -- 192.168.1.150 anywhere tcp spt:http ACCEPT tcp -- 192.168.1.150 anywhere tcp spt:https DROP all -- 192.168.1.150 anywhere stovetenaren happyhd # I thought the above would make for simple browsing on the net but I can't ping anything, can't acess a simgle page on the net. Ideas ? |
Well, you've blocked name resolution and who knows how many other useful ICMP packets. 'http/s' isn't the only thing on the wire.
Just to confirm: host www.google.com (or 'nslookup' if you don't have 'host') |
Well I now realice that UDP is quite useful :P
Thx |
All times are GMT -5. The time now is 10:35 PM. |