I set up a very simple web server running a MySQL database. Before I enabled the firewall, I could connect to the database over an ssh tunnel with no problems.
After I enabled the firewall, ssh tunneling broke. I've got ports 22 and 80 open, as shown below. If I change the INPUT policy to ACCEPT, ssh tunneling works fine.
Does anyone know how to configure iptables to allow ssh tunneling? Do I need to specify some sort of forwarding rule to the local machine? Any help is appreciated!
Here are my current iptables policies and rules:
Code:
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
ACCEPT tcp -- anywhere anywhere tcp dpt:www
Chain FORWARD (policy DROP)
Chain OUTPUT (policy ACCEPT)