FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Redhat > Fedora User

 
 
LinkBack Thread Tools
 
Old 02-02-2008, 09:17 PM
MIKE - EMAIL IGNORED
 
Default iptables ignores port 1900?

The following lines in iptables do not seem to work:

-A LOG-UDP-DROP -j LOG --log-prefix "IPT-UDP-DROP " --log-level debug
--log-ip-options --log-uid
-A LOG-UDP-DROP -j DROP

...

-A OUT -p udp -d 239.255.255.250 --dport 1900 -j LOG-UDP-DROP

Packets described by the last line continue to pass my wifi,
and the indicated log line does not appear. Why?

Thanks,
Mike.


--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
 
Old 02-02-2008, 10:46 PM
Donald Reader
 
Default iptables ignores port 1900?

On Sat, 2008-02-02 at 22:17 +0000, MIKE - EMAIL IGNORED wrote:
> The following lines in iptables do not seem to work:
>
> -A LOG-UDP-DROP -j LOG --log-prefix "IPT-UDP-DROP " --log-level debug
> --log-ip-options --log-uid
> -A LOG-UDP-DROP -j DROP
>
> ...
>
> -A OUT -p udp -d 239.255.255.250 --dport 1900 -j LOG-UDP-DROP
>
> Packets described by the last line continue to pass my wifi,
> and the indicated log line does not appear. Why?
>
> Thanks,
> Mike.
>
>

MIke
Try OUTPUT instead of OUT for the chain

Don

--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
 
Old 02-03-2008, 01:20 AM
MIKE - EMAIL IGNORED
 
Default iptables ignores port 1900?

On Sat, 02 Feb 2008 15:46:18 -0800, Donald Reader wrote:

> On Sat, 2008-02-02 at 22:17 +0000, MIKE - EMAIL IGNORED wrote:
>> The following lines in iptables do not seem to work:
>>
>> -A LOG-UDP-DROP -j LOG --log-prefix "IPT-UDP-DROP " --log-level debug
>> --log-ip-options --log-uid
>> -A LOG-UDP-DROP -j DROP
>>
>> ...
>>
>> -A OUT -p udp -d 239.255.255.250 --dport 1900 -j LOG-UDP-DROP
>>
>> Packets described by the last line continue to pass my wifi, and the
>> indicated log line does not appear. Why?
>>
>> Thanks,
>> Mike.
>>
>>
>>
> MIke
> Try OUTPUT instead of OUT for the chain
>
> Don

I have:

-A OUTPUT -j OUT

so the lines are correct as shown. An error of that kind
prevents the netfilter daemon from starting at all.

Mike.

--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
 
Old 02-03-2008, 01:32 AM
Donald Reader
 
Default iptables ignores port 1900?

On Sun, 2008-02-03 at 02:20 +0000, MIKE - EMAIL IGNORED wrote:
> On Sat, 02 Feb 2008 15:46:18 -0800, Donald Reader wrote:
>
> > On Sat, 2008-02-02 at 22:17 +0000, MIKE - EMAIL IGNORED wrote:
> >> The following lines in iptables do not seem to work:
> >>
> >> -A LOG-UDP-DROP -j LOG --log-prefix "IPT-UDP-DROP " --log-level debug
> >> --log-ip-options --log-uid
> >> -A LOG-UDP-DROP -j DROP
> >>
> >> ...
> >>
> >> -A OUT -p udp -d 239.255.255.250 --dport 1900 -j LOG-UDP-DROP
> >>
> >> Packets described by the last line continue to pass my wifi, and the
> >> indicated log line does not appear. Why?
> >>
> >> Thanks,
> >> Mike.
> >>
> >>
> >>
> > MIke
> > Try OUTPUT instead of OUT for the chain
> >
> > Don
>
> I have:
>
> -A OUTPUT -j OUT
>
> so the lines are correct as shown. An error of that kind
> prevents the netfilter daemon from starting at all.
>
> Mike.
>

Sorry but that was not stated in the original post
Don

--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
 
Old 02-03-2008, 03:15 AM
Tim
 
Default iptables ignores port 1900?

On Sat, 2008-02-02 at 22:17 +0000, MIKE - EMAIL IGNORED wrote:
> The following lines in iptables do not seem to work:
>
> -A LOG-UDP-DROP -j LOG --log-prefix "IPT-UDP-DROP " --log-level debug
> --log-ip-options --log-uid
> -A LOG-UDP-DROP -j DROP
>
> ...
>
> -A OUT -p udp -d 239.255.255.250 --dport 1900 -j LOG-UDP-DROP
>
> Packets described by the last line continue to pass my wifi,
> and the indicated log line does not appear. Why?

You'll need to post your entire rule set for anyone to know why what
happens, happens. You might have negated these rules earlier.

--
(This computer runs FC7, my others run FC4, FC5 & FC6, in case that's
important to the thread.)

Don't send private replies to my address, the mailbox is ignored.
I read messages from the public lists.

--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
 

Thread Tools




All times are GMT. The time now is 09:13 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org