nufw-users
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Nufw-users] Netfilter chain port 80

From: Oliveiros Peixoto \(Netinho\)
Subject: [Nufw-users] Netfilter chain port 80
Date: Tue, 17 May 2011 07:52:49 -0300

Hi,

 

I installed nufw and try to test. I create the chain to test authentication in iptables.

 

iptables -A FORWARD -s 192.168.200.0/24 -p tcp --dport 22 -m state --state NEW --syn -j QUEUE

iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT

 

[19:28:49] NuFW Packet: src="" dst=189.91.13.123 proto=6 sport=54117 dport=22, IN=eth0 OUT=eth0, packet_id=85, mark=0, exptime=-1

[19:28:51] User Packet: src="" dst=189.91.13.123 proto=6 sport=54117 dport=22, mark=0, user=admin, OS=Windows 7  7600, app=c:\users\peixoto\documents\putty.exe, exptime=-1

[19:28:51] [9] [plaintext] matching with ACL ssh and decision 1

[19:28:51] [9] [plaintext] matching with ACL full access for group 103 and decision 1

[19:28:51] [nuauth] Default Open [admin] 1305574129 : IN=eth0 OUT=eth0 SRC="" DST=189.91.13.123 PROTO=6 SPT=54117 DPT=22

[19:28:51] Answ Packet: src="" dst=189.91.13.123 proto=6 sport=54117 dport=22, decision=ACCEPT, IN=eth0 OUT=eth0, packet_id=85, mark=2, user=admin, OS=Windows 7  7600, app=c:\users\peixoto\documents\putty.exe, exptime=-1

 

I have succcesfull authenticated, but when try to use this chain on port 80 this not work.

 

iptables -A FORWARD -s 192.168.200.0/24 -p tcp --dport 80 -m state --state NEW --syn -j QUEUE

iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT

 

 

[19:26:55] NuFW Packet: src="" dst=200.154.56.73 proto=6 sport=1841 dport=80, IN=eth0 OUT=eth0, packet_id=83, mark=0, exptime=-1

[19:27:01] NuFW Packet: src="" dst=200.154.56.73 proto=6 sport=1841 dport=80, IN=eth0 OUT=eth0, packet_id=84, mark=0, exptime=-1

[19:27:08] Answ Packet: src="" dst=200.154.56.73 proto=6 sport=1841 dport=80, decision=DROP, IN=eth0 OUT=eth0, packet_id=84, mark=0, exptime=-1

[19:27:08] Answ Packet: src="" dst=200.154.56.73 proto=6 sport=1841 dport=80, decision=DROP, IN=eth0 OUT=eth0, packet_id=83, mark=0, exptime=-1

[19:27:08] Answ Packet: src="" dst=200.154.56.73 proto=6 sport=1841 dport=80, decision=DROP, IN=eth0 OUT=eth0, packet_id=82, mark=0, exptime=-1

[19:27:08] [7] Clean connection list: 1 connection(s) suppressed

[19:27:08] [nuauth] Default Drop [(null)] 1305574012 : IN=eth0 OUT=eth0 SRC="" DST=200.154.56.73 PROTO=6 SPT=1841 DPT=80

 

 

Somebody can help with this?

 

Thanks

Oliveiros Peixoto

reply via email to
[Prev in Thread] Current Thread [Next in Thread]