i've been having a problem with iptables for quite a while now, and it actually causes me to inactivate iptables..This is the setup:
i have a server running slackware 9.1 and iptables 1.2.8. The server is connected to a router/switch which handles the (dsl) connection. Ports 21, 22, 25, 80, 110, 143 and 10000 are forwarded to the server. As you can see i use webmin (port 10000) to administer many features on the server. Using webmin, i have opened up the ports as above on incoming. new, established and related connections are accepted. the last rule runs a chain that simply rejects everything. that's the incoming packets. Default on output is to accept everything, and no rules are set.
The problem is that i cannot create any connections from the server. i can't even ping hosts on the LAN. DNS information is unavailable. Everything is blocked on outgoing, which is weird because everything should be accepted.
when i connect to the server on ssh or ftp, it generally takes a couple of seconds before i can log in. http appears to work though.
I could really use some help to resolve this issue. I've tried google and various forums but a solution is still to be suggested.
Cheers.
/edit: these are the results of iptables --list
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere tcp dpt:http state NEW,RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh state NEW,RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:ftp state NEW,RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:10000 state NEW,RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:imap state NEW,RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:smtp state NEW,RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt
op3 state NEW,RELATED,ESTABLISHED
rejection all -- anywhere anywhere
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
Chain rejection (1 references)
target prot opt source destination
REJECT all -- anywhere anywhere reject-with icmp-port-unreachable