Modifing Iptables

[Tim]

On Fri, 2009-10-23 at 15:20 -0400, Jim wrote:
> FC11-X86_64/Kde
> 
> Trying to setup VNC in fedora 11 but if I put the following line in 
> /etc/syconfig/iptables ;
> 
> # 5901 corresponds to :1, 5902 for :2 and so on.
> -A INPUT -m state --state NEW -m tcp -p tcp --dport 5901:5902 -j ACCEPT
> 
> Then do   # service iptables restart  , it fails.
> 
> What is happening ??

*What* fails?  iptables fails to restart?  VNC fails to work?

If it's VNC failing, that could be because an earlier iptable rule is
preventing it, and your "allow" rule has been appended to the end (where
it won't actually do anything, depending on what came before).  Post the
whole set of rules for us to have a look at.

-- 
[tim at localhost ~]$ uname -r
2.6.27.25-78.2.56.fc9.i686

Don't send private replies to my address, the mailbox is ignored.  I
read messages from the public lists.