Hello Nick and all, [ big snip ]
I think the problem should be in the server section. Maybe the second line with a ! but what I don't understand is the error messages I'm getting Sep 27 10:10:09 barley kernel: Packet log: input DENY ppp0 PROTO=6 other person:1198 me:2443 L=48 S=0x00 I=54283 F=0x4000 T=113 SYN (#107)
Now I'd understand if it was the other way around but then I might just be confused.
Nick
From you log file I see that you have at least 107 rules... wow! Are they all quite necessary? for sure you can simplify them a lot and have ipchains at the same security level. More than, say, 30-40 rules make things messy when you want to track down problems.
As for your problem: try an 'ipchains -L' to see exactly what's going on with your rules. You may want to redirect the output to a file for a later check (do not hesitate to contact me by private email if you need further assistance and don't want to publish that output file). A final tip: ICQ *is* a security hole in your systems, no matter if you are behind a firewall. Once you have ports open, you are exposed to attackers... HTH, Martin -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq