Re: iptables corrupt?

From: Robert Nichols (SEE_SIGNATURE_at_localhost.localdomain.invalid)
Date: 09/25/05

Next message: matt_left_coast: "Re: securing system after giving away root password"

Previous message: Newsbox: "Re: iptables corrupt?"
In reply to: Newsbox: "Re: iptables corrupt?"
Next in thread: Bjoeboo: "Re: iptables corrupt?"
Reply: Bjoeboo: "Re: iptables corrupt?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sat, 24 Sep 2005 23:14:51 +0000 (UTC)

In article <E5qdne87z7POIqjeRVn-sA@acadia.net>,
Newsbox <nospam_for_me_please@thanks.invalid> wrote:
:On Sat, 24 Sep 2005 15:00:13 +0000, Robert Nichols wrote:
:
:> In article <7KidnYAP6Y6VKKneRVn-pw@acadia.net>,
:> Newsbox <nospam_for_me_please@thanks.invalid> wrote:
:> :
:> :Thank you for the clarification. It was never my intention to mislead,
:> :and you have clearly analyzed more thoroughly than I. I don't see
:> :anything to disagree with, in fact what you say seems to make sense.
:>
:> No biggie. The Red Hat startup scripts are complex, and important
:> pieces get brought in with "." commands that are awfully easy to
:> overlook. And even an analysis that proves to be incorrect can
:> sometimes point the way to an answer, so don't feel bad.
:
:I note your remark about "." commands, and am unsure if looking for
:(finding, reading and understanding) an explanation would answer:
:
:Where do you think the unwanted firewall rules are coming from at boot,
:and how does OP fix his boot sequence?

Elsewhere in this thread I came to the same conclusion as you: something
in the boot sequence is running after the startup of iptables and
replaces the original iptables rule set with its own. I suggested
searching through all the files under /etc for references to "iptables".
I haven't seen any response to that, but if that search doesn't reveal
the culprit then the next step would be to make a list of all the
services that get started after iptables in the boot sequence and try
eliminating likely candidates one at a time. Somewhere in there there's
another firewall being installed.

-- 
Bob Nichols         AT comcast.net I am "rnichols42"

Next message: matt_left_coast: "Re: securing system after giving away root password"

Previous message: Newsbox: "Re: iptables corrupt?"
In reply to: Newsbox: "Re: iptables corrupt?"
Next in thread: Bjoeboo: "Re: iptables corrupt?"
Reply: Bjoeboo: "Re: iptables corrupt?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Searching for an Application Proxy Firewall for Linux
... you can go searching on the following websites: ... IMHO IPTables is a Stateful Packet Filter and isn't able to do Layer 7 ... proxying, but it's hard to tell the difference between simple ...
(comp.os.linux.security)
netfilter and iptables help needed
... I was stuck ... in searching the entries present in the IPTables. ...
(Linux-Kernel)