| View previous topic :: View next topic |
| Author |
Message |
Stefan Pantiru
Tux's lil' helper
Joined: 23 May 2004
Posts: 80
Location: Iasi, Romania
|
 Posted: Mon Sep 27, 2004 11:19 am Post subject: what rule to pass to IPtables to allow a ntp-client?[solved] |
 |
|
The topic sais it all, actually...
I have this minimalistic ip-tables ruleset generated by adsl-setup, and my ntpdate only works in debug mode, otherwise saying that there are no available servers or something. When I disable iptables it works just fine.
So... what is the line to add to rules-save?
Thank you.
_________________
Viata-i grea, dar trece...
Last edited by Stefan Pantiru on Mon Sep 27, 2004 3:34 pm; edited 1 time in total |
|
| Back to top |
|
 |
InfinityX
Guru
Joined: 31 Jan 2004
Posts: 385
|
| Posted: Mon Sep 27, 2004 12:39 pm Post subject: |
|
|
| Code: | | iptables -A OUTPUT -p udp --dport 123 -j ACCEPT |
Is all I need. |
|
| Back to top |
|
|
splooge
l33t
Joined: 30 Aug 2002
Posts: 636
|
| Posted: Mon Sep 27, 2004 2:19 pm Post subject: |
|
|
Believe it or not, there's a difference between routing and network address translation. For a home NAT box I really don't see the purpose of dropping outbound packets by default.
iptables -P OUTPUT ACCEPT
is the rule you can use to allow all outbound traffic through.
_________________
http://get.a.clue.de |
|
| Back to top |
|
|
Stefan Pantiru
Tux's lil' helper
Joined: 23 May 2004
Posts: 80
Location: Iasi, Romania
|
| Posted: Mon Sep 27, 2004 3:15 pm Post subject: |
|
|
InfinityX, you helped me indirectly...
It was not necessary to have
| Code: | | iptables -A OUTPUT -p udp --dport 123 -j ACCEPT |
but from your post I noticed what was wrong:
I had this line:
| Code: | | [0:0] -A INPUT -p tcp --dport 123 -j ACCEPT |
instead of this:
| Code: | | [0:0] -A INPUT -p udp --dport 123 -j ACCEPT |
Thank you!
_________________
Viata-i grea, dar trece... |
|
| Back to top |
|
|
|
Networking & Security
