| View previous topic :: View next topic |
| Author |
Message |
Gentoo20
n00b
Joined: 14 Sep 2004
Posts: 12
|
 Posted: Tue Sep 28, 2004 5:54 pm Post subject: iptables |
 |
|
When I run: nmap -sT -O localhost
this is the results:
Port State Service
22/tcp open ssh
25/tcp open smtp
111/tcp open sunrpc
631/tcp open ipp
When I run: iptables -n -L
None of the ports are listed. How are the ports openned?
Where else are open/closed ports controled from? |
|
| Back to top |
|
 |
GatoVolador
Apprentice
Joined: 16 Jun 2004
Posts: 268
Location: California, USA
|
| Posted: Tue Sep 28, 2004 8:06 pm Post subject: |
|
|
Hello there,
Recall that iptables can only filter what gets to the ports in question, it doesn't actually open or close any ports. Generally, the services themselves open the ports that they need. For example, you see port 22 open because you're probably running the ssh daemon. Port 631 open indicates you're probably using cups. I forget the services that use smtp and sunrpc. If you really want to close these ports (which is a good idea if you don't use the services in question,) find the service to which they correspond and disable it, usually with something like | Code: | | rc-update del <service-script-name> default |
Service scripts are found in /etc/init.d and you can see what services are running in what boot level (that's what the default means in the rc-update del command above) by using
Hope that helps,
Jay |
|
| Back to top |
|
|
Gentoo20
n00b
Joined: 14 Sep 2004
Posts: 12
|
| Posted: Tue Sep 28, 2004 8:55 pm Post subject: |
|
|
OK. Thanks.
I need to get port 80 to forward to another server. This is what I have but is not working:
| Code: | [root@RedHat01 root]# iptables -t nat -n -L Chain PREROUTING (policy ACCEPT)
target prot opt source destination
DNAT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 to:x.x.x.x
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
|
|
|
| Back to top |
|
|
|
Networking & Security
