30 Sep
2004
30 Sep
'04
7:19 a.m.
Am Do, den 30.09.2004 schrieb TongKe Xue um 8:30:
--BEGIN QUOTE-- ## Insert connection-tracking modules (not needed if built into kernel). # insmod ip_conntrack # insmod ip_conntrack_ftp
## Create chain which blocks new connections, except if coming from inside. # iptables -N block # iptables -A block -m state --state ESTABLISHED,RELATED -j ACCEPT # iptables -A block -m state --state NEW -i ! ppp0 -j ACCEPT # iptables -A block -j DROP
## Jump to that chain from INPUT and FORWARD chains. # iptables -A INPUT -j block --END QUOTE--
What are the rules for OUTPUT? Seems that you at least block some traffic on localhost which prevents the GUI starting.
Alexander
--
Alexander Dalloz | Enger, Germany | GPG key 1024D/ED695653 1999-07-13
Fedora GNU/Linux Core 2 (Tettnang) kernel 2.6.8-1.521smp
Serendipity 14:17:10 up 16:43, 14 users, 0.35, 0.45, 0.34