[TriLUG] IPTABLES and XDMCP
Roy Vestal
rvestal at trilug.org
Mon Aug 25 16:58:51 EDT 2003
Didn't work. :( I see the listener but it's not working...
On Fri, 2003-08-22 at 13:43, Ken Mink wrote:
> Hey Roy,
> Port 177 is the listening port of xdm on the other machine. When you
> do the '-query :1 <your hostname>', you've told xdm to connect back to
> your machine on port 6001. So what you'll need is
>
> /sbin/iptables -A tcp_inbound -p TCP -s 0/0 --destination-port 6001 -j
> ACCEPT
>
> Displays start with :0 which is at port 6000 and go up from there. So
> display :5 would be 6005. You get the idea. Since your using :1, your
> display is listening on port 6001. Do a 'netstat -an | grep LISTEN' and
> you'll see it. You should also see display :0 listening on port 6000.
>
> Good Luck,
> Ken
>
> On Fri, 2003-08-22 at 12:03, Roy Vestal wrote:
> > I'm trying to set it up that I can XDMCP to my servers from my RHL 9 box
> > while running a IPTABLES firewall on the RHL 9 box. Now, if I stop
> > IPTABLES (/sbin/service iptables stop) I can connect using XDMCP (X :1
> > -query server.domain.name) fine. If I start it, it doesn't allow the
> > connection. I've tried the following while IPTABLES was started but it
> > didn't let me out. The port according to /etc/services is 177 TCP/UDP.
> >
> > /sbin/iptables -A tcp_inbound -p TCP -s 0/0 --destination-port 177:177
> > -j ACCEPT
> >
> > /sbin/iptables -A udp_inbound -p UDP -s 0/0 --destination-port 177:177
> > -j ACCEPT
> >
> > What have I missed?
More information about the TriLUG
mailing list