Review your favorite Linux distribution.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 10-09-2019, 05:49 AM   #1
LQ Newbie
Registered: Oct 2019
Posts: 1

Rep: Reputation: Disabled

i like to understand the following.
iptables -A OUTPUT -d -o eth0 -m owner --gid-owner test -j ACCEPT

is this mean that only users who belong gid test and reside in server from can have acces in this server (where the iptables exist) using tcp protocol?the user can coonect through ssh to this server?
thank you
Old 10-09-2019, 05:56 AM   #2
Senior Member
Registered: Nov 2013
Location: Tokyo
Distribution: Redhat/Centos, Ubuntu, Raspbian, Fedora, Alpine, Cirros, OpenSuse/SLES
Posts: 3,445

Rep: Reputation: 902Reputation: 902Reputation: 902Reputation: 902Reputation: 902Reputation: 902Reputation: 902Reputation: 902
This clause means:
- certain packets are allowed to leave the local system
- their destination address is from the range
- they were generated by a process whose group is test.

The man page warns that some packets don't have an owner and will therefore be blocked. This includes packets that are generated by the kernel, for example ICMP echo replies.

Last edited by berndbausch; 10-09-2019 at 05:58 AM. Reason: added warning about packets without owner


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
iptable how many rule iptable can manage toure32 Linux - Networking 1 05-13-2010 04:34 AM
what is an iptable? & how to seperate the network on the basis of iptable vinod.wagh Linux - Networking 1 09-11-2008 01:28 AM
unable get dhcp with iptable firewall active LionKing Linux - Networking 4 02-19-2002 06:33 PM
Iptable - upgrade for kernel 2.4.10 RH Smithpl Linux - Networking 4 11-16-2001 07:51 AM
iptable log cmardhekar Linux - Newbie 0 09-14-2001 05:49 AM > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 08:33 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration