Lost all network connectivity after clean FC3 install

Salvatore Indiogine sindiogine at yahoo.it
Thu Dec 9 18:34:40 UTC 2004 

Hi Paul! The output is at the end of the message.

 --- Paul Howarth <paul at city-fan.org> ha scritto: 
> >>that your packet forwarding rules are broken.
> What's
> >>the output of:
> >>
> >># iptables -n -L
> >>
> >>on the machine connected to the cable modem?
> > 
> > iptables -n -L
> > Chain INPUT (policy ACCEPT)
> > target     prot opt source              
> destination
> > ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0
>          tcp dpts:6881:6889
> > RH-Firewall-1-INPUT  all  --  0.0.0.0/0          
> 0.0.0.0/0
> > 
> > Chain FORWARD (policy ACCEPT)
> > target     prot opt source              
> destination
> > RH-Firewall-1-INPUT  all  --  0.0.0.0/0          
> 0.0.0.0/0
> > ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0
> > 
> > Chain OUTPUT (policy ACCEPT)
> > target     prot opt source              
> destination
> > 
> > Chain RH-Firewall-1-INPUT (2 references)
> > target     prot opt source              
> destination
> > ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0
> > ACCEPT     icmp --  0.0.0.0/0            0.0.0.0/0
>       icmp type 255
> > ACCEPT     esp  --  0.0.0.0/0            0.0.0.0/0
> > ACCEPT     ah   --  0.0.0.0/0            0.0.0.0/0
> > ACCEPT     udp  --  0.0.0.0/0           
> 224.0.0.251     udp dpt:5353
> > ACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0
>       udp dpt:631
> > ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0
>       state RELATED,ESTABLISHED
> > ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0
>       state NEW tcp dpt:22
> > REJECT     all  --  0.0.0.0/0            0.0.0.0/0
>       reject-with icmp-host-prohibited
> 
> Interesting; the first rule in the
> RH-Firewall-1-INPUT chain would appear to 
> be accepting any packet, thus rendering the
> remaining rules irrelevant. 
> However, I'm not an iptables expert and I don't use
> Red Hat's firewall 
> utility, so maybe I'm misinterpreting that.
> 
> What do you get from:
> 
> # iptables -L -n -t nat

Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination
MASQUERADE  all  --  0.0.0.0/0            0.0.0.0/0

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Thanks!
Enrico



		
___________________________________ 
Nuovo Yahoo! Messenger: E' molto più divertente: Audibles, Avatar, Webcam, Giochi, Rubrica
 Scaricalo ora! 
http://it.messenger.yahoo.it

More information about the fedora-list mailing list