[Bug 1067057] SuSEfirewall2 ver 3.6.312-5.9.1 blocks NFS access

http://bugzilla.opensuse.org/show_bug.cgi?id=1067057 http://bugzilla.opensuse.org/show_bug.cgi?id=1067057#c2 Donald Arseneau changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|matthias.gerstner@suse.com |bnc-team-screening@forge.pr | |ovo.novell.com --- Comment #2 from Donald Arseneau --- On another computer, I recorded the difference in iptables (iptables -nL). The older working version of susefirewall2 has several extra rules under Chain input_ext (1 references) target prot opt source destination LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW udp dpt:111 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:111 LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW tcp dpt:111 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:111 LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW udp dpt:2049 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:2049 LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW tcp dpt:2049 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2049 LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW udp dpt:41695 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:41695 LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW tcp dpt:45341 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:45341 LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW udp dpt:41695 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:41695 LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW tcp dpt:45341 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:45341 LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW udp dpt:34754 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:34754 LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW tcp dpt:60251 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:60251 LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW udp dpt:34754 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:34754 LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW tcp dpt:60251 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:60251 LOG udp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW udp dpt:20048 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:20048 LOG tcp -- 0.0.0.0/0 0.0.0.0/0 limit: avg 3/min burst 5 ctstate NEW tcp dpt:20048 LOG flags 6 level 4 prefix "SFW2-INext-ACC-RPC " ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:20048 -- You are receiving this mail because: You are on the CC list for the bug.