Comments on: Basic iptables Configuration http://spiralbound.net/2008/12/31/basic-iptables-configuration my digital notebook Sun, 14 Mar 2010 17:00:35 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: building solaris-based enterprise router-firewall project - SUN Solaris - The UNIX and Linux Forums http://spiralbound.net/2008/12/31/basic-iptables-configuration#comment-222938 building solaris-based enterprise router-firewall project - SUN Solaris - The UNIX and Linux Forums Sun, 21 Jun 2009 23:34:00 +0000 http://spiralbound.net/?p=388#comment-222938 [...] on Solaris 10 sonia hamilton – life on the digital bikepath – sonia@snowfrog.net and Basic iptables Configuration|spiralbound.net [...] [...] on Solaris 10 sonia hamilton – life on the digital bikepath – sonia@snowfrog.net and Basic iptables Configuration|spiralbound.net [...]

]]> By: cybervegan http://spiralbound.net/2008/12/31/basic-iptables-configuration#comment-221934 cybervegan Fri, 12 Jun 2009 10:20:22 +0000 http://spiralbound.net/?p=388#comment-221934 Your script would cut off SSH on port 22, where it says: # Allow incoming SSH on port 22 #/sbin/iptables -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT In your article, you said that you had the MySQL port rule commented out, but that seems to be still active: # Allow MySQL only from a certain network /sbin/iptables -A INPUT -p tcp -m tcp -s XXX.XXX.XXX.0/24 --dport 3306 -j ACCEPT Did you comment out the wrong line? Your script would cut off SSH on port 22, where it says:

# Allow incoming SSH on port 22
#/sbin/iptables -A INPUT -p tcp -m tcp –dport 22 -j ACCEPT

In your article, you said that you had the MySQL port rule commented out, but that seems to be still active:

# Allow MySQL only from a certain network
/sbin/iptables -A INPUT -p tcp -m tcp -s XXX.XXX.XXX.0/24 –dport 3306 -j ACCEPT

Did you comment out the wrong line?

]]>