Chinaunix
标题:
关于iptables的pptpd的问题,请高手指点!(已搜索,但仍未解决)
[打印本页]
作者:
taojie2000
时间:
2011-09-21 11:17
你上面那样 的确和没开一样
作者:
碌木
时间:
2011-09-21 11:54
请问怎么样解决呢
作者:
taojie2000
时间:
2011-09-21 12:00
回复
1#
碌木
你把你防火墙现有的规则列下
作者:
碌木
时间:
2011-09-21 12:06
呃...怎么看防火墙现有的规则
#service iptables status
吗?
作者:
碌木
时间:
2011-09-21 12:09
本帖最后由 碌木 于 2011-09-21 13:27 编辑
这是重启iptables后的规则
[root@localhost ~]# service iptables restart
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: nat mangle filter [ OK ]
Unloading iptables modules: [ OK ]
Applying iptables firewall rules: [ OK ]
Loading additional iptables modules: ip_conntrack_netbios_n[ OK ]
[root@localhost ~]# service iptables status
Table: nat
Chain PREROUTING (policy ACCEPT)
num target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
num target prot opt source destination
1 MASQUERADE all -- 0.0.0.0/0 0.0.0.0/0 MARK match 0x9
Chain OUTPUT (policy ACCEPT)
num target prot opt source destination
Table: mangle
Chain PREROUTING (policy ACCEPT)
num target prot opt source destination
1 MARK all -- 0.0.0.0/0 0.0.0.0/0 MARK set 0x9
Chain INPUT (policy ACCEPT)
num target prot opt source destination
Chain FORWARD (policy ACCEPT)
num target prot opt source destination
Chain OUTPUT (policy ACCEPT)
num target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
num target prot opt source destination
Table: filter
Chain INPUT (policy ACCEPT)
num target prot opt source destination
1 RH-Firewall-1-INPUT all -- 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy ACCEPT)
num target prot opt source destination
1 RH-Firewall-1-INPUT all -- 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT)
num target prot opt source destination
Chain RH-Firewall-1-INPUT (2 references)
num target prot opt source destination
1 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
2 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
3 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 255
4 ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0
5 ACCEPT ah -- 0.0.0.0/0 0.0.0.0/0
6 ACCEPT udp -- 0.0.0.0/0 224.0.0.251 udp dpt:5353
7 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:631
8 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:631
9 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
10 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22
11 REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited
复制代码
作者:
taojie2000
时间:
2011-09-21 12:34
回复
1#
碌木
那帖子 里面 1楼和下面楼层的 几句 你都加进去了吗?
作者:
碌木
时间:
2011-09-21 13:07
没有,因为这是重启iptables给你看的,我现在加进去再发给你看
作者:
碌木
时间:
2011-09-21 13:33
更新了一下一楼的内容
作者:
FaintKnowledge
时间:
2011-09-21 13:42
本帖最后由 FaintKnowledge 于 2011-09-21 13:46 编辑
回复
9#
碌木
加个 -i eth0 呢?
iptables命令根服务停掉启动没什么关系...,只要语法没问题,就可以执行.
作者:
碌木
时间:
2011-09-21 14:31
vps的宿主故障了,还没用得上vps
欢迎光临 Chinaunix (http://bbs.chinaunix.net/)
Powered by Discuz! X3.2