firewall - $IPTABLES -A INPUT -i $LO_IFACE -d 127.0.0.1 -j ACCEPT

Jaroslav Bartoň jaroslav.barton na sh.cvut.cz
Středa Duben 7 18:40:01 CEST 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Anti.Trust wrote:
| Zdravim o5.
|
|
| Mal som na fw problem.
| Okrem ineho-squid, apache, bezi na nom aj bind9.
|
| LO_IFACE=lo
| Ak som A)
|          $IPTABLES -A INPUT -i $LO_IFACE -j ACCEPT
| nahradil s B)
|          $IPTABLES -A INPUT -i $LO_IFACE -s 127.0.0.1 -j ACCEPT
|          $IPTABLES -A INPUT -i $LO_IFACE -d 127.0.0.1 -j ACCEPT
| co je IMHO "to iste", tak neslo resolve local_LAN z
| localhostu=firewallu=bind_PC, resolve_NET islo za cca 1,5-2,5 sekundy.

co jeste zpusit povolit

iptables -A INPUT	-i $LO_IFACE	-s $MY_IP	-j ACCEPT

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFAdC7gPHiihraXKJIRAvudAJ9N8cWk7+fccILkHgQLf8ec8uLhEgCgu+cV
KlOO5wsnbUqZAJUQjRxx90I=
=y/JU
-----END PGP SIGNATURE-----


Další informace o konferenci Linux