|
Ed Ackerman on 27 Nov 2016 18:02:59 -0800
|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
[PLUG] IPTABLES CentOS 6.8
|
- From: Ed Ackerman <edack@kengel.com>
- To: Phila Linux Group <plug@lists.phillylinux.org>
- Subject: [PLUG] IPTABLES CentOS 6.8
- Date: Sun, 27 Nov 2016 21:01:30 -0500 (EST)
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=kengel.com; s=default; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date: Sender:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID: In-Reply-To:References:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=6NlZc6WCgrMj8FRFqm1Pr83TAF6v7bczsR+gtLlaZIA=; b=LcD3QNLIef3d7iZYhQpsQGf87r GUQ3ebdvYUg7MhSTeEZTvWNawMHQXJnhRXM8MP+5Oia89QFDeqvoyma35b+PW/3QiPezJHmfGFsQB R5GZ8FLoWE7AJDu5KH1kEa4JTxkYLd2P4Epu8exjSVrw3Kbse+fU7vLGIPdiUGql+Zbc=;
- Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
- Sender: "plug" <plug-bounces@lists.phillylinux.org>
- User-agent: Alpine 2.20 (LRH 67 2015-01-07)
Ok, so I did what turned out to be an ill conceved idea. I downloaded and
created a bootable USB with CentOS 7 (the x86 NOT x64 spin). Booted it and
it ran fine. Trouble started when I rebooted into my normal 6.8. My home
LVM volume was missing. Fixed that mostly a few problems Hercules
TK4- won't IPL, Some movies have to be re ripped. Minor issues.
I now have all volumes up and free from errors. IPTABLES, using the same
rules is giving me an error on the COMMIT. Adding the following causes the
error
-A INPUT -m state -i eth0 --state ESTABLISHED,RELATED -j ACCEPT
Error:
iptables: Applying firewall rules: iptables-restore: line 42 failed
Line 42 is the COMMIT.
I i try the following by itself
iptables -A INPUT -m state -i eth0 --state ESTABLISHED,RELATED -j ACCEPT
I get: iptables: No chain/target/match by that nam
The basic idea for the firewall is to deny everything except what is
permited, There are no OUTPUT rules it's default is to ACCEPT. The machine
is a fixed private IP setup on the router as DMZ. everything is passed to
it.
Ideas? anyone?
---
#include <std.disclaimer>; | select * from users
Ed Ackerman | where users.clue = 1;
edack@kengel.com | 0 rows returned
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug