Mailinglist Archive: opensuse-security (511 mails)
| < Previous | Next > |
Re: [suse-security] SuSEfirewall-4.9
- From: John Pinder <jpinder@xxxxxxx>
- Date: Fri, 24 Aug 2001 13:38:11 -0700
- Message-id: <01082413381100.00918@shorn>
On Friday 24 August 2001 14:47, myLinux wrote:
> Hi seclist;
> I'm running Marcs SuSEfirewall 4.9 on Kernel 2.2.16 - and since my last
> reinstall I can't get it up again. It's stupid, I know, since I had it
> once; but I have the choice: a firewall which is up *OR* eMail via
> smtp/pop3. I think its a fault in section 9 of firewall.rc.config but I
[snip]
>
> I'm sure most of you can help me with that - thanks in advance!!!
> Andi
Hi,
Since you seem to be blocking incoming connections to port 1024,
check section 11, it should probably look like the following:
######
[snip]
FW_ALLOW_INCOMING_HIGHPORTS_TCP="yes" # Common: "ftp-data" (sadly!)
FW_ALLOW_INCOMING_HIGHPORTS_UDP="yes" # Common: "DNS" or "domain ntp"
[snip]
######
Also, as root, execute "ipchains -L" to see what your rules are.
John
> Hi seclist;
> I'm running Marcs SuSEfirewall 4.9 on Kernel 2.2.16 - and since my last
> reinstall I can't get it up again. It's stupid, I know, since I had it
> once; but I have the choice: a firewall which is up *OR* eMail via
> smtp/pop3. I think its a fault in section 9 of firewall.rc.config but I
[snip]
>
> I'm sure most of you can help me with that - thanks in advance!!!
> Andi
Hi,
Since you seem to be blocking incoming connections to port 1024,
check section 11, it should probably look like the following:
######
[snip]
FW_ALLOW_INCOMING_HIGHPORTS_TCP="yes" # Common: "ftp-data" (sadly!)
FW_ALLOW_INCOMING_HIGHPORTS_UDP="yes" # Common: "DNS" or "domain ntp"
[snip]
######
Also, as root, execute "ipchains -L" to see what your rules are.
John
| < Previous | Next > |