On Thu, 28 Sep 2000, Martin Mielke wrote:
From you log file I see that you have at least 107 rules... wow! Are they all quite necessary? for sure you can simplify them a lot and have ipchains at the same security level. More than, say, 30-40 rules make things messy when you want to track down problems.
I just added a couple of new ones last night to get outgoing smtp working right-) The firewall script is based on http://linux-firewall-tools.com/linux/firewall/index.html It's simple to build and produces a script I understand enough to make it work with SuSE even if it is designed for Redhat. It's even nice and readable. If I just understood ipchains a little better then it would be very readable.
As for your problem: try an 'ipchains -L' to see exactly what's going on with your rules. You may want to redirect the output to a file for a later check (do not hesitate to contact me by private email if you need further assistance and don't want to publish that output file).
The only thing that really leaps out is the Chain input (policy DENY): which I think means deny everything unless told otherwise and the lack of an accept line for the needed ports. I'll send you the output.
A final tip: ICQ *is* a security hole in your systems, no matter if you are behind a firewall. Once you have ports open, you are exposed to attackers...
Everything is a hole. The idea is trying to find a balance between a totally secure system and one that is use able. Nick -- ----------------------------- Anybody got plans for an ark? ----------------------------- -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq