| View previous topic :: View next topic |
| Author |
Message |
sleepingsun
Guru
Joined: 03 May 2006
Posts: 477
Location: Bosnia
|
 Posted: Sat Dec 20, 2008 12:19 am Post subject: Need help with IPTABLES and easydns |
 |
|
I have my website and dynamic DNS i buy service for company easydns ! Installed on gentoo ez-ipupdate and start tham ! Its working and updateing my IP when isp change IP ! This work when IPtables are down ! When i Start IPTABLES update of IP start and site is unviable and also i cant ping tham ! I need help !
Also is it anybody no what port this site use for ip update to enable tham !
| Code: | | /var/lib/iptables/rules-save |
Here this mu rules-save of iptbales:
| Code: | # Generated by iptables-save v1.4.0 on Fri Dec 19 22:19:33 2008
*raw
:PREROUTING ACCEPT [243544:318311082]
:OUTPUT ACCEPT [237483:295423297]
COMMIT
# Completed on Fri Dec 19 22:19:33 2008
# Generated by iptables-save v1.4.0 on Fri Dec 19 22:19:33 2008
*nat
:PREROUTING ACCEPT [1430:523862]
:POSTROUTING ACCEPT [350:24767]
:OUTPUT ACCEPT [1118:79678]
[768:54911] -A POSTROUTING -o eth0 -j MASQUERADE
COMMIT
# Completed on Fri Dec 19 22:19:33 2008
# Generated by iptables-save v1.4.0 on Fri Dec 19 22:19:33 2008
*mangle
:PREROUTING ACCEPT [26551:29255611]
:INPUT ACCEPT [25227:28740053]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [23419:20985411]
:POSTROUTING ACCEPT [23437:20989122]
COMMIT
# Completed on Fri Dec 19 22:19:33 2008
# Generated by iptables-save v1.4.0 on Fri Dec 19 22:19:33 2008
*filter
:INPUT ACCEPT [20679:28262221]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [23420:20985463]
[0:0] -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 21 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 23 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 2710 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 2710 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 80 -j ACCEPT
[18:1372] -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 8080 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 8081 -j ACCEPT
[214:15197] -A INPUT -p tcp -m tcp --dport 10000 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 10000 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 10000 -j ACCEPT
[0:0] -A INPUT -p tcp -m multiport --dports 137,138 -j ACCEPT
[0:0] -A INPUT -p udp -m multiport --dports 139,445 -j ACCEPT
[19:3600] -A INPUT -p udp -m multiport --dports 137,138 -j ACCEPT
[0:0] -A INPUT -i eth0 -p tcp -m tcp --sport 137:139 -j ACCEPT
[0:0] -A INPUT -i eth0 -p udp -m udp --sport 137:139 -j ACCEPT
[0:0] -A INPUT -i eth0 -p tcp -m tcp --sport 445 -j ACCEPT
[0:0] -A INPUT -i eth0 -p udp -m udp --sport 445 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 137 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 137 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 138 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 138 -j ACCEPT
[51:6868] -A INPUT -p tcp -m tcp --dport 139 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 139 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 445 -j ACCEPT
[239:54583] -A INPUT -p tcp -m tcp --dport 445 -j ACCEPT
[3996:395032] -A INPUT -p tcp -m tcp --dport 902 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 902 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 42577 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 42577 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 12525 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 12525 -j ACCEPT
[0:0] -A INPUT -i eth0 -p udp -m udp --sport 6881:6889 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 6881 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 6881 -j ACCEPT
[0:0] -A INPUT -p udp -m udp --dport 6889 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 6889 -j ACCEPT
[0:0] -A INPUT -p tcp -m tcp --dport 3128 -j ACCEPT
[12:1232] -A INPUT -i eth0 -m state --state INVALID,NEW -j DROP
[0:0] -A FORWARD -i eth0 -m state --state INVALID,NEW -j DROP
COMMIT
# Completed on Fri Dec 19 22:19:33 2008
|
_________________
Gentoo is Rocks |
|
| Back to top |
|
 |
Sadako
Advocate
Joined: 05 Aug 2004
Posts: 3792
Location: sleeping in the bathtub
|
| Posted: Sat Dec 20, 2008 1:25 am Post subject: |
|
|
`netstat -nlp` will tell you what ports any daemons on your system are listening on.
_________________
"You have to invite me in" |
|
| Back to top |
|
|
sleepingsun
Guru
Joined: 03 May 2006
Posts: 477
Location: Bosnia
|
| Posted: Sat Dec 20, 2008 7:33 pm Post subject: |
|
|
I figure out that is not firewall thanks a lot i also change my old router micronet sp888b with trendnet Trendnet TEW-672GR and old one have option easydns and becouse of that is works now when i transfered to new one faster router i dont have that option !
And also i figure that all time services ez-ipupdate isnt work that did my router ! Now I'm confused all time when is start i get massage that is ok and that client start fine !
This is my conf file from ez-ipupdate !
| Code: | #!/usr/bin/ez-ipupdate -c
#
# example config file for ez-ipupdate
#
# this file is actually executable!
#
service-type=easydns
user=myusername:mypassword
host=mysite.org
interface=eth0
# if you use run-as ensure the user has permission to write this file
cache-file=/tmp/ez-ipupdate.cache
# uncomment this once you have everything working how you want and you are
# ready to have ez-ipupdate running in the background all the time. to stop it
# you can use "killall -QUIT ez-ipupdate" under linux.
daemon |
Please help !
_________________
Gentoo is Rocks |
|
| Back to top |
|
|
|
Networking & Security
