Thanks for the suggestion, that is exactly what happened.<br>I was misled by an internet suggestion that nmap was a good tool to check iptables configuration, but that is not true.<br>iptables -L gives the correct information<br>
<br>Paul<br><br><div class="gmail_quote">2009/10/13 Christopher K. Johnson <span dir="ltr"><<a href="mailto:ckjohnson@gwi.net">ckjohnson@gwi.net</a>></span><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div><div></div><div class="h5">paul van der meij wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
I upgraded from FC9 to FC11 (new install) but iptables is behaving strange. My /etc/sysconfig/iptables file shows a number of ports as accept, but nmap tells a different story. e.g. imap port 143 is closed in nmap (and in truce), open in iptables file.<br>
I did use the iptables GUI to configure.<br>
<br>
Any idea what I am overlooking.<br>
<br>
greetings, Paul van der Meij<br>
</blockquote></div></div>
What does 'netstat -atn' tell you? If iptables allows connections to tcp 143 but there is no application listening on the port, that could explain what you describe.<br>
<br>
Chris<br><font color="#888888">
<br>
-- <br>
fedora-list mailing list<br>
<a href="mailto:fedora-list@redhat.com" target="_blank">fedora-list@redhat.com</a><br>
To unsubscribe: <a href="https://www.redhat.com/mailman/listinfo/fedora-list" target="_blank">https://www.redhat.com/mailman/listinfo/fedora-list</a><br>
Guidelines: <a href="http://fedoraproject.org/wiki/Communicate/MailingListGuidelines" target="_blank">http://fedoraproject.org/wiki/Communicate/MailingListGuidelines</a><br>
</font></blockquote></div><br>