- 论坛徽章:
- 0
|
如何要在LINUX让防火墙开放ftp和samba端口呢?\r\n我是这样写的\r\niptables -A INPUT -p tcp --sport ftp -j ACCEPT\r\niptables -A INPUT -p tcp --sport 546 -j ACCEPT\r\niptables -A INPUT -p tcp --sport 547 -j ACCEPT\r\n是不是需要把3个表都写满呢?\r\n我这边的环境还是有新的一张表的.是别人建的.\r\niptables -L结果是这样的\r\nChain RH-Firewall-1-INPUT (2 references)\r\ntarget prot opt source destination\r\nACCEPT all -- anywhere anywhere\r\nACCEPT icmp -- anywhere anywhere icmp any\r\nACCEPT ipv6-crypt-- anywhere anywhere\r\nACCEPT ipv6-auth-- anywhere anywhere\r\nACCEPT udp -- anywhere 224.0.0.251 udp dpt:5353\r\nACCEPT udp -- anywhere anywhere udp dpt:ipp\r\nACCEPT udp -- anywhere anywhere udp dpt:2198\r\nACCEPT udp -- anywhere anywhere udp dpt:2199\r\nACCEPT udp -- anywhere anywhere udp dpt:2200\r\nACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED\r\nACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh\r\nACCEPT tcp -- anywhere anywhere state NEW tcp dpt:http\r\nACCEPT tcp -- anywhere anywhere state NEW tcp dpt:webcache\r\nACCEPT tcp -- anywhere anywhere state NEW tcp dpt:1099\r\nACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ftp\r\nREJECT all -- anywhere anywhere reject-with icmp-host-prohibited\r\n tcp -- anywhere anywhere tcp spt:ftp\r\nACCEPT tcp -- anywhere anywhere tcp spt:ftp\r\nACCEPT tcp -- anywhere anywhere tcp spt:dhcpv6-client\r\nACCEPT tcp -- anywhere anywhere tcp spt:dhcpv6-server\r\n tcp -- anywhere anywhere tcp spt:dhcpv6-client\r\nACCEPT tcp -- anywhere anywhere tcp spt:dhcpv6-client\r\nACCEPT tcp -- anywhere anywhere tcp spt:dhcpv6-server\r\nACCEPT udp -- anywhere anywhere udp spt:dhcpv6-client\r\nACCEPT udp -- anywhere anywhere udp spt:dhcpv6-server\r\n我想请问各位大虾我要怎样改呢? |
|