| View previous topic :: View next topic |
| Author |
Message |
dgt84
Guru
Joined: 27 May 2003
Posts: 355
Location: Germany => USA
|
 Posted: Fri Sep 12, 2003 6:02 pm Post subject: Firewall is blocking me from printing to an LPR/LPD printer! |
 |
|
I seems that when I have iptables running I am not able to print to my lpr/lpd printer. Cups can't connect to it and firestarter shows all sorts of hits from the print server's ip, but they are always from crazy ports above 32,000. When I disable the firewall all is well again. Is there any way I can open up a single port and have all this trouble automagically fixed? I've searched around and can't find anything on the subject!
_________________
Lila themes | The Porthole Portage Frontend | SVG-Utils |
|
| Back to top |
|
 |
grimshaw
Tux's lil' helper
Joined: 07 Aug 2003
Posts: 101
Location: Greensboro, NC 27403, USA, Earth
|
| Posted: Fri Sep 12, 2003 6:27 pm Post subject: |
|
|
IFACE="eth0"
IPADDR="192.168.0.1"
PRINTER1="192.168.0.2"
#usual print queue
iptables -A INPUT -i $IFACE -d $IPADDR -s $PRINTER1 -p tcp --sport 515 -m state --state ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o $IFACE -s $IPADDR -d $PRINTER1 -p tcp --dport 515 -m state --state NEW,ESTABLISHED -j ACCEPT
#jetdirect
iptables -A INPUT -i $IFACE -d $IPADDR -s $PRINTER1 -p tcp --sport 9100 -m state --state ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o $IFACE -s $IPADDR -d $PRINTER1 -p tcp --dport 9100 -m state --state NEW,ESTABLISHED -j ACCEPT
_________________
All that is necessary for the triumph of evil is that good men do nothing.
-- Edmund Burke (1729-1797) |
|
| Back to top |
|
|
grimshaw
Tux's lil' helper
Joined: 07 Aug 2003
Posts: 101
Location: Greensboro, NC 27403, USA, Earth
|
| Posted: Fri Sep 12, 2003 6:36 pm Post subject: |
|
|
Well, I made an error in my hasty example. A print queue does not go to the printer. It goes to a unix machine running lpd.
print_queue_server="192.168.0.3"
#usual print queue
iptables -A INPUT -i $IFACE -d $IPADDR -s $print_queue_server -p tcp --sport 515 -m state --state ESTABLISHED -j ACCEPT
iptables -A OUTPUT -o $IFACE -s $IPADDR -d $print_queue_server -p tcp --dport 515 -m state --state NEW,ESTABLISHED -j ACCEPT
_________________
All that is necessary for the triumph of evil is that good men do nothing.
-- Edmund Burke (1729-1797) |
|
| Back to top |
|
|
dgt84
Guru
Joined: 27 May 2003
Posts: 355
Location: Germany => USA
|
| Posted: Sat Sep 13, 2003 9:28 am Post subject: no luck |
|
|
Cups still can't connect to the printer unless I either '/etc/init.d/iptables stop' or click Stop inside of firestarter (which I believe does about the same thing. I have tried ports 515 and 9100, and the print server's IP is 192.168.1.102, so I even added that IP as a trusted host in firestarter, meaning everything sent from it should be accepted automatically, but it still does not work... I am at a total loss here...
Also, every few seconds I am getting hits from the print server on ports like 33802, 33825, 33840, 33825, etc.... Opening those ports doesn't seem to help, either...
_________________
Lila themes | The Porthole Portage Frontend | SVG-Utils |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Networking & Security
