[TriLUG] Re: Firewall for my webserver (IPTABLES)

Chris Knowles chrisk at trilug.org
Sun Jun 8 15:40:51 EDT 2003 

Well, I've seen something about this in the past.  only two things pop
to mind...

1) try dropping the firewall to make *sure* that that is not the
problem.

2) Doing a little googling, I found a couple of people for whom the
solution was to uninstall the TCP/IP protocol,.reboot, and reconfigure
it.

But on the good side, from even a cursory googling, on "linux dns
windows 98" it appears that you aren't the only person suffering this
problem.

CJK

On Sun, 2003-06-08 at 13:46, Jerry M. Howell II wrote:
> On Sat, Jun 07, 2003 at 11:38:41PM -0600, Jerry M. Howell II wrote:
> > Hello everyone,
> > 
> >    I'm curently running adminning my wifes webserver at
> >    gamma.hostbyk.com. We are running redhat 7.3 with a generic 2.4.20
> >    kernel custom compiled with all the iptables/NAT goodies. I go to
> >    enable the firewall and thats where I runn into problems. I can view
> >    the webserver, about 75% of my clients can but there are some that go
> >    through compuserve, earthlink and aol that can't seem to access
> >    anything once I start the firewall. No email, ftp, can't ping it or
> >    pull up a webpage. Thought it was probably ICMP so I allowed that
> >    through but still nothing. Might someone have any sugestions? here is
> >    the output from /usr/local/iptables-save wich is iptables-1.2.8 BTW.
> > 
> > My firewall script can be found at http://www.jmhowell.com/fire.html if
> > you wanna look that over as well. Thnx for any advice that can be given.
> > Any time warner admins feal free to spill the beens as well if you know
> > of anything :)
> > 
> Just a little addition. I think I have the issue narowed down. My cousin
> can access the sites through win2k, and linux but not through win98, the
> clients that can't access it are also useing win98. As crazy as it
> sounds I think it's a windows 98 problem accessing dns even through the
> firewall even though the proper ports are open. Any ideas?
-- 
Chris Knowles <chrisk at trilug.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://www.trilug.org/pipermail/trilug/attachments/20030608/25eb0fab/attachment.pgp>

More information about the TriLUG mailing list