[wplug] iptable problems
coldfire
rolick571 at duq.edu
Tue Dec 18 01:24:30 EST 2001
> I have both of these rules.
> iptables -A INPUT -i ppp0 -p tcp --sport 22 -m state --state NEW,ESTABLISHED
> -j ACCEPT
> iptables -A OUTPUT -o ppp0 -p tcp --dport 22 -m state --state
> >NEW,ESTABLISHED -j ACCEPT
yes, but the rule for the incoming interface is specifying the source
port. ssh doesn't use a source port of 22. the destination port is port
22. the source port is just some arbitrary port above 1024.
coldie
More information about the wplug
mailing list