Mailinglist Archive: opensuse-security (257 mails)
| < Previous | Next > |
SuSEfirewall2 and added iptables rule question
- From: "guus" <linux@xxxxxxxxx>
- Date: Mon, 2 Aug 2004 11:27:46 +0200
- Message-id: <200408020926.i729QGJt079855@xxxxxxxxxxxxxxxxxxx>
Hello list users,
I am using SuSE 9.1 prof. And its doing quite nice on my server. Although I
have a security related question.
Is there somebody who can give me a hint on how to add iptables rules to the
SuSEfirwall2 setup.
I haven been trying severall things before posting to this list, for
example:
- adding the rule directly from the prompt using the iptables -A command.
- usung the webmin firewall configuration tool, added the rule and made it
run at startup.
- put the rule in the startup script SuSEfirewall2 using the folowing:
FW_CUSTOMRULES="/etc/sysconfig/scripts/SuSEfirewall2-custom"
where the called script includes:
fw_custom_before_denyall() {
iptables -A input_ext -m state -s 80.0.0.0/0 -d 10.0.1.253 -i eth1 --state
NEW,ESTABLISHED,RELATED,INVALID -j DROP
true
}
Nevertheless when I execute the iptables -L command the rule seems not to be
added to the filtering table. Only the other rules, generated by the
firewall are there.
I realy like to get this running, so if yoy could help then please do. Your
help will be much appreciated.
Thank you in advance.
Guus Bill
-------------------------------------------------------
I am using SuSE 9.1 prof. And its doing quite nice on my server. Although I
have a security related question.
Is there somebody who can give me a hint on how to add iptables rules to the
SuSEfirwall2 setup.
I haven been trying severall things before posting to this list, for
example:
- adding the rule directly from the prompt using the iptables -A command.
- usung the webmin firewall configuration tool, added the rule and made it
run at startup.
- put the rule in the startup script SuSEfirewall2 using the folowing:
FW_CUSTOMRULES="/etc/sysconfig/scripts/SuSEfirewall2-custom"
where the called script includes:
fw_custom_before_denyall() {
iptables -A input_ext -m state -s 80.0.0.0/0 -d 10.0.1.253 -i eth1 --state
NEW,ESTABLISHED,RELATED,INVALID -j DROP
true
}
Nevertheless when I execute the iptables -L command the rule seems not to be
added to the filtering table. Only the other rules, generated by the
firewall are there.
I realy like to get this running, so if yoy could help then please do. Your
help will be much appreciated.
Thank you in advance.
Guus Bill
-------------------------------------------------------
| < Previous | Next > |