LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 10-09-2019, 05:49 AM   #1
nimic
LQ Newbie
 
Registered: Oct 2019
Posts: 1

Rep: Reputation: Disabled
iptable


hi,
i like to understand the following.
iptables -A OUTPUT -d 192.168.30.0/24 -o eth0 -m owner --gid-owner test -j ACCEPT

is this mean that only users who belong gid test and reside in server from 192.168.30.0 can have acces in this server (where the iptables exist) using tcp protocol?the user can coonect through ssh to this server?
thank you
 
Old 10-09-2019, 05:56 AM   #2
berndbausch
Senior Member
 
Registered: Nov 2013
Location: Tokyo
Distribution: Redhat/Centos, Ubuntu, Raspbian, Fedora, Alpine, Cirros, OpenSuse/SLES
Posts: 3,445

Rep: Reputation: 902Reputation: 902Reputation: 902Reputation: 902Reputation: 902Reputation: 902Reputation: 902Reputation: 902
This clause means:
- certain packets are allowed to leave the local system
- their destination address is from the range 192.168.30.0/24
- they were generated by a process whose group is test.

The man page warns that some packets don't have an owner and will therefore be blocked. This includes packets that are generated by the kernel, for example ICMP echo replies.

Last edited by berndbausch; 10-09-2019 at 05:58 AM. Reason: added warning about packets without owner
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
iptable how many rule iptable can manage toure32 Linux - Networking 1 05-13-2010 04:34 AM
what is an iptable? & how to seperate the network on the basis of iptable vinod.wagh Linux - Networking 1 09-11-2008 01:28 AM
unable get dhcp with iptable firewall active LionKing Linux - Networking 4 02-19-2002 06:33 PM
Iptable - upgrade for kernel 2.4.10 RH Smithpl Linux - Networking 4 11-16-2001 07:51 AM
iptable log cmardhekar Linux - Newbie 0 09-14-2001 05:49 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 08:33 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration