<br><br><div class="gmail_quote">2012/1/12 Primitivo Pajares <span dir="ltr"><<a href="mailto:crispulas@yahoo.es">crispulas@yahoo.es</a>></span><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div><div style="font-size:12pt;font-family:times new roman,new york,times,serif">PARTE 2<div><div class="h5"><br><br><br>
<div style="margin-bottom:0cm">EL COMANDO SUDO IPTABLES -L -v</div>
<div style="margin-bottom:0cm">El comando sudo iptables -L -v da el
siguiente resultado:</div>
<div style="margin-bottom:0cm">primi@primi-lp:~$ sudo iptables -L -v
</div>
<div style="margin-bottom:0cm">[sudo] password for primi:
</div>
<div style="margin-bottom:0cm">Chain INPUT (policy DROP 6764 packets,
500K bytes)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm">4253K 2857M ufw-before-logging-input
all -- any any anywhere anywhere
</div>
<div style="margin-bottom:0cm">4253K 2857M ufw-before-input all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"> 6768 500K ufw-after-input all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"> 6764 500K ufw-after-logging-input
all -- any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"> 6764 500K ufw-reject-input all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"> 6764 500K ufw-track-input all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain FORWARD (policy DROP 0 packets, 0
bytes)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-before-logging-forward
all -- any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-before-forward all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-after-forward all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-after-logging-forward
all -- any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-reject-forward all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain OUTPUT (policy ACCEPT 164
packets, 9955 bytes)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm">5828K 5672M ufw-before-logging-output
all -- any any anywhere anywhere
</div>
<div style="margin-bottom:0cm">5828K 5672M ufw-before-output all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm">70173 4801K ufw-after-output all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm">70173 4801K ufw-after-logging-output
all -- any any anywhere anywhere
</div>
<div style="margin-bottom:0cm">70173 4801K ufw-reject-output all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm">70173 4801K ufw-track-output all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-after-forward (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-after-input (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-skip-to-policy-input
udp -- any any anywhere anywhere udp
dpt:netbios-ns
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-skip-to-policy-input
udp -- any any anywhere anywhere udp
dpt:netbios-dgm
</div>
<div style="margin-bottom:0cm"> 1 48 ufw-skip-to-policy-input
tcp -- any any anywhere anywhere tcp
dpt:netbios-ssn
</div>
<div style="margin-bottom:0cm"> 3 152 ufw-skip-to-policy-input
tcp -- any any anywhere anywhere tcp
dpt:microsoft-ds
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-skip-to-policy-input
udp -- any any anywhere anywhere udp
dpt:bootps
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-skip-to-policy-input
udp -- any any anywhere anywhere udp
dpt:bootpc
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-skip-to-policy-input
all -- any any anywhere anywhere
ADDRTYPE match dst-type BROADCAST
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-after-logging-forward (1
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 0 0 LOG all -- any
any anywhere anywhere limit: avg 3/min
burst 10 LOG level warning prefix `[UFW BLOCK] '
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-after-logging-input (1
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 3898 295K LOG all -- any
any anywhere anywhere limit: avg 3/min
burst 10 LOG level warning prefix `[UFW BLOCK] '
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-after-logging-output (1
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-after-output (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-before-forward (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-user-forward all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-before-input (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 13 552 ACCEPT all -- lo
any anywhere anywhere
</div>
<div style="margin-bottom:0cm">4230K 2844M ACCEPT all -- any
any anywhere anywhere state
RELATED,ESTABLISHED
</div>
<div style="margin-bottom:0cm">15232 12M ufw-logging-deny all --
any any anywhere anywhere state INVALID
</div>
<div style="margin-bottom:0cm">15232 12M DROP all -- any
any anywhere anywhere state INVALID
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT icmp -- any
any anywhere anywhere icmp
destination-unreachable
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT icmp -- any
any anywhere anywhere icmp source-quench
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT icmp -- any
any anywhere anywhere icmp time-exceeded
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT icmp -- any
any anywhere anywhere icmp
parameter-problem
</div>
<div style="margin-bottom:0cm"> 15 784 ACCEPT icmp -- any
any anywhere anywhere icmp echo-request
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT udp -- any
any anywhere anywhere udp spt:bootps
dpt:bootpc
</div>
<div style="margin-bottom:0cm"> 7938 876K ufw-not-local all -- any
any anywhere anywhere
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT all -- any
any <a href="http://base-address.mcast.net/4" target="_blank">base-address.mcast.net/4</a> anywhere
</div>
<div style="margin-bottom:0cm"> 1169 376K ACCEPT all -- any
any anywhere <a href="http://base-address.mcast.net/4" target="_blank">base-address.mcast.net/4</a>
</div>
<div style="margin-bottom:0cm"> 6769 500K ufw-user-input all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-before-logging-forward (1
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-before-logging-input (1
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-before-logging-output (1
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-before-output (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 13 552 ACCEPT all -- any
lo anywhere anywhere
</div>
<div style="margin-bottom:0cm">5758K 5667M ACCEPT all -- any
any anywhere anywhere state
RELATED,ESTABLISHED
</div>
<div style="margin-bottom:0cm">70173 4801K ufw-user-output all --
any any anywhere anywhere
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-logging-allow (0 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 0 0 LOG all -- any
any anywhere anywhere limit: avg 3/min
burst 10 LOG level warning prefix `[UFW ALLOW] '
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-logging-deny (2 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 1234 919K RETURN all -- any
any anywhere anywhere state INVALID limit:
avg 3/min burst 10
</div>
<div style="margin-bottom:0cm"> 1118 893K LOG all -- any
any anywhere anywhere limit: avg 3/min
burst 10 LOG level warning prefix `[UFW BLOCK] '
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-not-local (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 6769 500K RETURN all -- any
any anywhere anywhere ADDRTYPE match
dst-type LOCAL
</div>
<div style="margin-bottom:0cm"> 1169 376K RETURN all -- any
any anywhere anywhere ADDRTYPE match
dst-type MULTICAST
</div>
<div style="margin-bottom:0cm"> 0 0 RETURN all -- any
any anywhere anywhere ADDRTYPE match
dst-type BROADCAST
</div>
<div style="margin-bottom:0cm"> 0 0 ufw-logging-deny all --
any any anywhere anywhere limit: avg
3/min burst 10
</div>
<div style="margin-bottom:0cm"> 0 0 DROP all -- any
any anywhere anywhere
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-reject-forward (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-reject-input (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-reject-output (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-skip-to-policy-forward (0
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 0 0 DROP all -- any
any anywhere anywhere
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-skip-to-policy-input (7
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 4 200 DROP all -- any
any anywhere anywhere
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-skip-to-policy-output (0
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT all -- any
any anywhere anywhere
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-track-input (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-track-output (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm">25237 1514K ACCEPT tcp -- any
any anywhere anywhere state NEW
</div>
<div style="margin-bottom:0cm">44772 3277K ACCEPT udp -- any
any anywhere anywhere state NEW
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-user-forward (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-user-input (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT tcp -- any
any primi-lp.local anywhere tcp spt:4662
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT udp -- any
any primi-lp.local anywhere udp spt:4672
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT udp -- any
any primi-lp.local anywhere udp spt:4665
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT tcp -- any
any primi-lp.local anywhere tcp spt:4665
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT tcp -- any
any primi-lp.local anywhere tcp spt:50100
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT udp -- any
any primi-lp.local anywhere udp spt:50200
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-user-limit (0 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 0 0 LOG all -- any
any anywhere anywhere limit: avg 3/min
burst 5 LOG level warning prefix `[UFW LIMIT BLOCK] '
</div>
<div style="margin-bottom:0cm"> 0 0 REJECT all -- any
any anywhere anywhere reject-with
icmp-port-unreachable
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-user-limit-accept (0
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"> 0 0 ACCEPT all -- any
any anywhere anywhere
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-user-logging-forward (0
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-user-logging-input (0
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-user-logging-output (0
references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm">Chain ufw-user-output (1 references)
</div>
<div style="margin-bottom:0cm"> pkts bytes target prot opt in
out source destination
</div>
<div style="margin-bottom:0cm">primi@primi-lp:~$ ^C
</div>
<div style="margin-bottom:0cm">primi@primi-lp:~$
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div style="margin-bottom:0cm"><br>
</div>
<div><span><br></span></div><div> </div></div></div><div class="im"><div>Primitivo Pajares Mateos<br>Linux User: #486404<br></div> <div style="font-family:times new roman,new york,times,serif;font-size:12pt"> <div style="font-family:times new roman,new york,times,serif;font-size:12pt">
<div dir="ltr"> <font face="Arial"> <hr size="1"><b><span style="font-weight:bold"></span></b></font><br> </div></div> </div> </div></div></div></blockquote></div><br>Perdón por tardar tanto, tu correo no me apareció todo lo que recibo.<br>
<br>UFW tiene las reglas bien incomodas, redirigiendo todo a otras cadenas. Yo por lo regular prefiero algo bien simple, pero no vi nada que apunte que los puertos estan cerrados, excepto que solo acepta envios hacia "primi-lp.local" en lugar de una ip y eso puede confundir a iptables. Trata desactivando UFW por completo, y dejar las reglas por defecto. <a href="http://www.cyberciti.biz/tips/linux-iptables-how-to-flush-all-rules.html">Acá dice como</a> (enlace). Tambien actualiza aMule, creo que tienen su propio repositorio o ppa.<br>
<br>Sobre lo de UPNP, lo activaste en el router y en aMule, y reiniciaste ambos, o lo hiciste por separado? Si no encuentras la opcion consulta el manual de operaciones, busca algo como "Port Fowarding" o "NAT Configurations" ya que depende de quien escriba el firmware del router el nombre que le pondra a cada opcion. Sobre el DMZ, como se configura? tiene un puerto especial en el router o es a base de ips? Podrias decir el modelo?<br>
<br>Bue', sin mas, me despido.<br><br>Braiam Peguero<br>