[plug] ipchains problem
John Summerfield
summer at os2.ami.com.au
Thu Dec 9 13:52:23 WST 1999
What might I have done wrong? Here are (some of) my firewall rules:
[root at emu ppp]# ipchains -L ppp-out -v
Chain ppp-out (1 references):
pkts bytes target prot opt tosa tosx ifname mark
outsize source destination ports
0 0 REJECT 80 ------ 0xFF 0x00 ppp0
anywhere www.burstnet.com n/a
0 0 REJECT 80 ------ 0xFF 0x00 ppp0
anywhere ads1.zdnet.com n/a
0 0 REJECT 80 ------ 0xFF 0x00 ppp0
anywhere h-206-132-12-5.globalcenter.net n/a
0 0 REJECT 80 ------ 0xFF 0x00 ppp0
anywhere 63.211.136.203 n/a
0 0 - 80 ------ 0xFF 0x00 ppp0
anywhere anywhere n/a
20 1135 - all ------ 0xFF 0x00 ppp0
anywhere anywhere n/a
[root at emu ppp]# telnet 63.211.136.203 80
Trying 63.211.136.203...
Connected to 63.211.136.203.
Escape character is '^]'.
get /
HTTP/1.0 400 Cache Detected Error
Content-type: text/html
<HTML><HEAD><TITLE>ERROR: Invalid HTTP Request</TITLE></HEAD>
<BODY><H1>ERROR</H1>
<H2>Invalid HTTP Request</H2>
<HR>
<PRE>
get http://63.211.136.203/
</PRE>
<P>
<HR>
<ADDRESS>
Generated by squid/1.1.20 at proxy.ami.com.au
</ADDRESS></BODY></HTML>
Connection closed by foreign host.
[root at emu ppp]#
I thought this should block 63.211.136.203, but the telnet to port 80 says
otherwise.
Before someone tries foot in mouth; I know I got the answer from
proxy.ami.com.au. However, my firewall does not know about that
(transparent) proxy; it should be blocked before it goes through my modem.
Note the counters on the last line show that my rule IS being called; that
was an ftp done just to test that.
--
Cheers
John Summerfield
http://os2.ami.com.au/os2/ for OS/2 support.
Configuration, networking, combined IBM ftpsites index.
More information about the plug
mailing list