[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: silug: found BitTorrent but made an IPTABLES error

To: silug-discuss <silug-discuss@silug.org>
Subject: Re: silug: found BitTorrent but made an IPTABLES error
From: Paul Nicholas McCubbins <nick77@dtnspeed.net>
Date: Tue, 28 Dec 2004 06:16:53 -0600
In-Reply-To: <41CED340.2000007@gmail.com>
Organization: Southern Illinois Linux Users Group
References: <41CED340.2000007@gmail.com>
Reply-To: silug-discuss@silug.org
Sender: silug-discuss-owner@silug.org

Straight from the iptables manpage:

   ACCEPT  means to let the packet through.  DROP means to drop the
packet on the floor.  QUEUE means to pass the packet  to  userspace  (if
supported by  the  kernel).   RETURN means stop traversing this chain
and resume at the next rule in the previous (calling) chain.  If the end
of a  built-in  chain is reached or a rule in a built-in chain with
target RETURN is matched, the target specified by the chain policy
determines the fate of the packet.

Later in the manpage:

-R, --replace chain rulenum rule-specification
     Replace a rule in the selected chain.  If the source and/or  
     destination  names  resolve to multiple addresses, the command will
     fail.  Rules are numbered starting at 1.

and...

REJECT
       This is used to send back an error packet in response  to  the
matched packet:  otherwise it is equivalent to DROP so it is a
terminating TARGET, ending rule traversal.  This target is only valid
in  the  INPUT, FORWARD  and  OUTPUT  chains,  and  user-defined  chains
which are only called from those chains.  The following option controls
the nature  of the error packet returned:

There are many helpful people on this list; However it helps to develop
a healthy sense of self-sufficiency.  As Steve pointed out, we like to
do other things besides sit in front of a computer all day. Something
about teaching a man to fish..

On Sun, 2004-12-26 at 09:05 -0600, bentley.rhodes wrote:
> hey, i found BitTorrent in my DUMMIES book, but when it told me to type 
> in the opening for the firewall, i messed up and put it under eth0 
> instead of eth1.  i retyped the same line (for the mistake) but instead 
> of putting ACCEPT, i put REJECT.  is that right?  i don't wanna back door! 
> 
>  iptables -I RH-Firewall-1-INPUT --protocol tcp --dport 6881:6899 -i 
> eth0 -j REJECT
> 
> 
> -
> To unsubscribe, send email to majordomo@silug.org with
> "unsubscribe silug-discuss" in the body.
> 
-- 
Paul Nicholas McCubbins <nick77@dtnspeed.net>

-
To unsubscribe, send email to majordomo@silug.org with
"unsubscribe silug-discuss" in the body.

Follow-Ups:
- Re: silug: found BitTorrent but made an IPTABLES error
  - From: Ray McCord <ray.mccord@gmail.com>

References:
- silug: found BitTorrent but made an IPTABLES error
  - From: "bentley.rhodes" <bentley.rhodes@gmail.com>

Prev by Date: Re: silug: i just discovered that ROOT gets mail ...
Next by Date: Re: silug: found BitTorrent but made an IPTABLES error
Prev by thread: silug: found BitTorrent but made an IPTABLES error
Next by thread: Re: silug: found BitTorrent but made an IPTABLES error
Index(es):
- Date
- Thread