[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail forwarding
- Subject: RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail forwarding
- From: "Sean Ward" <planxty@xxxxxxxx>
- Date: Tue, 23 Apr 2002 12:05:02 -0500
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Those lines are there. And yes, I'm running multiple IP addresses.
Sean
-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx] On Behalf Of Gerald Waugh
Sent: Tuesday, April 23, 2002 8:05 AM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail
forwarding
On Tue, 23 Apr 2002, Sean Ward wrote:
> Didn't work. Bummer.
>
check /etc/rc.d/init.d/pmfirewall see if you have a couple lines like
this....
# These are open to sockets created by connections allowed by
ipchains
$IPCHAINS -A input -p tcp -s $REMOTENET -d $OUTERNET 1023:65535 -j
ACCEPT
$IPCHAINS -A input -p udp -s $REMOTENET -d $OUTERNET 1023:65535 -j
ACCEPT
DNS may use high numbered ports, not just 53
Also, did I understand that your server is running on multiple IP
addresses?
This may affect operation...
I remember someone a few months ago that had a problem with multiple IP
addresses...
--
Gerald Waugh
http://www.frontstreetnetworks.com
Front Street Networks LLC - 203-785-0699
229 Front Street, Ste. #C, New Haven CT, 06513-3203
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security