You can try with this:
iptables -A INPUT -i lo -j DROP iptables -A OUTPUT -i lo -j DROP
Thanks Kulla, but there are another 2 problems with your commands: 1. you can't use "-i" parameter for OUTPUT chain LOL :) (must be -o instead) anyway I did: iptables -F iptables -A INPUT -i lo -j DROP iptables -A OUTPUT -o lo -j DROP 2. I still *can* access my Web Server ! With this you should kill all localhost network.
What are you trying to achieve, what's the goal of doing all this?
I'm learning Linux Firewall - IPtables now. -Alexey.
After some extensive testing, people told me that it mayb be browser cache, but I found it is NOT. It seems that KDE Konqueror can overlook the firewall. How I tested: 1. activated the firewall IN+OUT to DROP state. 2. changed the web page index.html 3. KDE Browser, despite active firewall, could access the new page ! 4. FireFox could access the page. Is this possible that KDE Konqueror ignores Firewall ? -Alexey.
Alexey Eremenko wrote:
How I tested: 1. activated the firewall IN+OUT to DROP state. 2. changed the web page index.html 3. KDE Browser, despite active firewall, could access the new page ! 4. FireFox could access the page.
Is that the Konqueror and Firefox on localhost? Are you (can you?) firewall the lo interface? What interface(s) are you filtering? I know neither can bypass the firewall, so I suspect there is some other factor playing into this scenario. -- Joe Morris Registered Linux user 231871
Alexey Eremenko wrote:
After some extensive testing, people told me that it mayb be browser cache, but I found it is NOT. It seems that KDE Konqueror can overlook the firewall.
How I tested: 1. activated the firewall IN+OUT to DROP state. 2. changed the web page index.html 3. KDE Browser, despite active firewall, could access the new page ! 4. FireFox could access the page.
Is this possible that KDE Konqueror ignores Firewall ?
-Alexey.
Are you opening localhost or local file? -- Kulla
participants (3)
-
Alexey Eremenko
-
Joe Morris (NTM)
-
Kulla