[Gllug] Port filtering question
Alistair Mann
gllug at lgeezer.net
Fri Oct 1 19:52:12 UTC 2010
Paul Cupis wrote:
> On 01/10/10 17:59, salsaman at xs4all.nl wrote:
> > Apparently now iptables runs a kernel module [when did that happen
> > ?!], so the correct way is lsmod | grep iptables.
>
> That will tell you if any iptables modules are loaded.
>
> To see what rules are being applied (because it may be open) you can
> do:
>
> iptables -nL
>
> for example.
It's worth pointing out that iptables -nL is /preferable/ to lsmod |
grep iptables; the former would reveal the presence of iptables compiled
into the kernel, whereas the latter shows that presence only if it was
moduled in.
Jan Henkins also suggested looking at selinux' status but didn't add how:
ls /selinux //suggests is or was present, no such file or directory
otherwise
sudo getenforce //returns status if present, command not found otherwise
Cheers,
--
Alistair Mann
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list