LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 01-05-2006, 04:51 PM   #1
mfeoli
Member
 
Registered: Dec 2003
Distribution: Debian
Posts: 92

Rep: Reputation: 15
Unhappy Iptables wide open, but no UDP packets allowed (all ports closed) please help


Hi, I will rephrase a question I placed a little while before to inforce participation of others

My IPtables are wide open, and when I test to access an UDP port from the external interfase, the port appears closed,
Iptraf reports the attempt on the external interfase but registers an unreachable port, If I test with nmap


iptables -P INPUT ACCEPT
iptables -F INPUT
iptables -P OUTPUT ACCEPT
iptables -F OUTPUT
iptables -P FORWARD DROP
iptables -F FORWARD
iptables -t nat -F
echo "1" > /proc/sys/net/ipv4/ip_forward
echo "0" > /proc/sys/net/ipv4/tcp_ecn

exit

...all my other old rules from this point on

but still have udp ports closed,

Iptraf results:

UDP (877 bytes) from 10.0.0.102:sip to my.server.net:sip on eth0 │
ICMP dest unrch (port) (576 bytes) from my.server.net to 10.0.0.102 on et │



I checked with nmap with the following result

Starting nmap 3.81 ( http://www.insecure.org/nmap/ ) at 2006-01-04 12:34 CST
Initiating UDP Scan against my.server.net (xxx.xxx.xxx.xxx) [1 port] at 12:34
The UDP Scan took 0.01s to scan 1 total ports.
Host zeus.kinetos.net (xxx.xxx.xxx.xxx) appears to be up ... good.
Interesting ports on zeus.kinetos.net (xxx.xxx.xxx.xxx):
PORT STATE SERVICE
5060/udp closed unknown

Nmap finished: 1 IP address (1 host up) scanned in 0.190 seconds
Raw packets sent: 3 (96B) | Rcvd: 4 (140B)

My iptables -L:

root@zeus:~# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy DROP)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination


I'm ussing debian sarge
 
Old 01-06-2006, 10:52 AM   #2
flashingcurser
Member
 
Registered: Jan 2003
Distribution: many win/nix/mac
Posts: 259

Rep: Reputation: 32
Something in my head tells me that udp port scans always show closed. So your nmap output doesnt seem out of line. Check insecure.org docs.

I think the big question may be what service is giving you troubles?



dan
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
All UDP ports of my firewall are closed even without iptables rules, any clue? mfeoli Linux - Networking 2 01-05-2006 11:07 AM
Akward ports listed and UDP packets. stryka Linux - Security 1 11-22-2005 05:25 PM
Open UDP ports ArnaudVR Linux - Security 6 06-25-2003 11:43 AM
UDP ports and IPTables estranged0877 Linux - Networking 4 02-18-2003 02:44 PM
how can i open closed ports? doublefailure Linux - Networking 7 07-10-2002 01:38 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 02:48 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration