IPTables

[John Summerfield]

Chris Norman wrote:
> From: "Anthony Messina" <amessina at messinet.com>
> To: "For users of Fedora Core releases" <fedora-list at redhat.com>
> Sent: Sunday, March 19, 2006 11:22 PM
> Subject: Re: IPTables
> 
> 
>> Chris Norman wrote:
>>
>>> Hi people,
>>> I am running a server in college at the minute. I just re installed 
>>> it because (amoungst other things), IPTables wasn't doing anything. 
>>> Now I have exactly the same iptables problem.
>>>
>>> If I do:
>>> service iptables start
>>>
>>> I just get returned to the prompt, the same with /etc/init.d/iptables 
>>> start.
>>>
>>> Why am I getting no output, how can I get iptables to start please?
>>>
>>> Cheers,
>>>
>>> Chris Norman
>>> <!-- chris.norman4 at ntlworld.com -->
>>
>>
>> have you defined iptables rules?  what are they?  what do your 
>> logfiles say?
> 
> 
> Which log files? I defined a rule like this:
> 
> iptables -F
> iptables -A INPUT -p tcp --dport ! 20:25 -j DROP
> 
> Then I did service iptables start, and it looked good, everything came 
> up as [OK], but then when I did service iptables status, it said 
> "Firewall is stopped".

I'd need to read the script to see what that message means. I suggest 
you do that.

"service iptables start" clears all your existing rules and then causes 
a predefined set of rules to be implemented.

If you haven't created firewall rules, you won't get a firewall 
implemented. No matter how many times you reinstall.