- 论坛徽章:
- 0
|
以下是的IPTABLES的配置,这个是别人做的,本来好使的,开放一一些常见的服务:22,139 ,445,而现在我想在
添加几个服务,比如VNC服务:5801,5901,我添加了,我认为应该没问题,但是就是不好使,而我一旦把IPTABLS停了,就可以连接了,就是IPTABLES配置问题,那位知道的,麻烦告诉兄弟一声,不胜感谢!!!!
[root@fs ~]# service iptables status
表格:filter
Chain INPUT (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain RH-Firewall-1-INPUT (2 references)
target prot opt source destination
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 255
ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0
ACCEPT ah -- 0.0.0.0/0 0.0.0.0/0
ACCEPT udp -- 0.0.0.0/0 224.0.0.251 udp dpt:5353
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:631
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:137 dpt:137
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:138 dpt:138
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:139
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:445
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:389
REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5801
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5901 |
|