|
From: | Oliveiros Peixoto \(Netinho\) |
Subject: | [Nufw-users] Netfilter chain port 80 |
Date: | Tue, 17 May 2011 07:52:49 -0300 |
Hi, I installed nufw and try to test. I create the chain to test authentication in iptables. iptables -A FORWARD -s 192.168.200.0/24 -p tcp --dport 22 -m state --state NEW --syn -j QUEUE iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT [19:28:49] NuFW Packet: src="" dst=189.91.13.123 proto=6 sport=54117 dport=22, IN=eth0 OUT=eth0, packet_id=85, mark=0, exptime=-1 [19:28:51] User Packet: src="" dst=189.91.13.123 proto=6 sport=54117 dport=22, mark=0, user=admin, OS=Windows 7 7600, app=c:\users\peixoto\documents\putty.exe, exptime=-1 [19:28:51] [9] [plaintext] matching with ACL ssh and decision 1 [19:28:51] [9] [plaintext] matching with ACL full access for group 103 and decision 1 [19:28:51] [nuauth] Default Open [admin] 1305574129 : IN=eth0 OUT=eth0 SRC="" DST=189.91.13.123 PROTO=6 SPT=54117 DPT=22 [19:28:51] Answ Packet: src="" dst=189.91.13.123 proto=6 sport=54117 dport=22, decision=ACCEPT, IN=eth0 OUT=eth0, packet_id=85, mark=2, user=admin, OS=Windows 7 7600, app=c:\users\peixoto\documents\putty.exe, exptime=-1 I have succcesfull authenticated, but when try to use this chain on port 80 this not work. iptables -A FORWARD -s 192.168.200.0/24 -p tcp --dport 80 -m state --state NEW --syn -j QUEUE iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT [19:26:55] NuFW Packet: src="" dst=200.154.56.73 proto=6 sport=1841 dport=80, IN=eth0 OUT=eth0, packet_id=83, mark=0, exptime=-1 [19:27:01] NuFW Packet: src="" dst=200.154.56.73 proto=6 sport=1841 dport=80, IN=eth0 OUT=eth0, packet_id=84, mark=0, exptime=-1 [19:27:08] Answ Packet: src="" dst=200.154.56.73 proto=6 sport=1841 dport=80, decision=DROP, IN=eth0 OUT=eth0, packet_id=84, mark=0, exptime=-1 [19:27:08] Answ Packet: src="" dst=200.154.56.73 proto=6 sport=1841 dport=80, decision=DROP, IN=eth0 OUT=eth0, packet_id=83, mark=0, exptime=-1 [19:27:08] Answ Packet: src="" dst=200.154.56.73 proto=6 sport=1841 dport=80, decision=DROP, IN=eth0 OUT=eth0, packet_id=82, mark=0, exptime=-1 [19:27:08] [7] Clean connection list: 1 connection(s) suppressed [19:27:08] [nuauth] Default Drop [(null)] 1305574012 : IN=eth0 OUT=eth0 SRC="" DST=200.154.56.73 PROTO=6 SPT=1841 DPT=80 Somebody can help with this? Thanks Oliveiros Peixoto |
[Prev in Thread] | Current Thread | [Next in Thread] |