[Gllug] iptables ignoring rules?
Gerd
busker at busker.org
Wed Oct 13 08:54:24 UTC 2010
On 13/10/2010 09:49, gvim wrote:
> Centos 5.5
>
> My firewall script contains these entries:
>
> iptables -A INPUT -p TCP -j ACCEPT -m state --state NEW -s 192.168.1.0/8
> iptables -A INPUT -p UDP -j ACCEPT -m state --state NEW -s 192.168.1.0/8
>
> ... but /var/log/messages has many of these entries (abbreviated):
>
> kernel: Dropped by default:IN=eth0 SRC=192.168.1.254 DST=224.0.0.1 LEN=36 TOS=0x00 PREC=0xC0 TTL=1 ID=19845 DF PROTO=2
I think that packet is not TCP or UDP so it doesn't match any of your rules.
Gerd.
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list