[ubuntu-it] configurare firestarter su ubuntu

massimiliano destefano destefano a lispa.it
Ven 10 Mar 2006 11:36:14 GMT


Il giorno ven, 10/03/2006 alle 07.53 +0100, hopfrog ha scritto:
> Qualcuno puņ darmi una mano per configurare un firewall. Attualmento sto
> provando FIRESTARTER ma una volta avviato mi impedisce la navigazione.
> Riporto la configurazione (ottenuta con iptables -L):
> Chain INBOUND (4 references)
> target     prot opt source               destination
> ACCEPT     tcp  --  anywhere             anywhere            state
> RELATED,ESTABLISHED
> ACCEPT     udp  --  anywhere             anywhere            state
> RELATED,ESTABLISHED
> ACCEPT     all  --  www.tiscali.it       anywhere
> ACCEPT     all  --  0.0.85.106           anywhere
> LSI        all  --  anywhere             anywhere
> 
> Chain INPUT (policy DROP)
> target     prot opt source               destination
> ACCEPT     tcp  --  nsr2.tiscali.it      anywhere            tcp
> flags:!SYN,RST,ACK/SYN
> ACCEPT     udp  --  nsr2.tiscali.it      anywhere
> ACCEPT     all  --  anywhere             anywhere
> ACCEPT     icmp --  anywhere             anywhere            limit: avg
> 10/sec burst 5
> DROP       all  --  anywhere             255.255.255.255
> DROP       all  --  anywhere            
> host-84-220-55-16.cust-adsl.tiscali.it
> DROP       all  --  BASE-ADDRESS.MCAST.NET/8  anywhere
> DROP       all  --  anywhere             BASE-ADDRESS.MCAST.NET/8
> DROP       all  --  255.255.255.255      anywhere
> DROP       all  --  anywhere             0.0.0.0
> DROP       all  --  anywhere             anywhere            state INVALID
> LSI        all  -f  anywhere             anywhere            limit: avg
> 10/min burst 5
> INBOUND    all  --  anywhere             anywhere
> INBOUND    all  --  anywhere            
> host-84-220-55-16.cust-adsl.tiscali.it
> INBOUND    all  --  anywhere            
> host-84-220-55-16.cust-adsl.tiscali.it
> INBOUND    all  --  anywhere            
> host-84-220-55-16.cust-adsl.tiscali.it
> LOG_FILTER  all  --  anywhere             anywhere
> LOG        all  --  anywhere             anywhere            LOG level
> info prefix `Unknown Input'
> 
> Chain FORWARD (policy DROP)
> target     prot opt source               destination
> ACCEPT     icmp --  anywhere             anywhere            limit: avg
> 10/sec burst 5
> TCPMSS     tcp  --  anywhere             anywhere            tcp
> flags:SYN,RST/SYN TCPMSS clamp to PMTU
> OUTBOUND   all  --  anywhere             anywhere
> ACCEPT     tcp  --  anywhere            
> host-84-220-55-16.cust-adsl.tiscali.it state RELATED,ESTABLISHED
> ACCEPT     udp  --  anywhere            
> host-84-220-55-16.cust-adsl.tiscali.it state RELATED,ESTABLISHED
> LOG_FILTER  all  --  anywhere             anywhere
> LOG        all  --  anywhere             anywhere            LOG level
> info prefix `Unknown Forward'
> 
> Chain LOG_FILTER (5 references)
> target     prot opt source               destination
> 
> Chain LSI (2 references)
> target     prot opt source               destination
> LOG_FILTER  all  --  anywhere             anywhere
> LOG        tcp  --  anywhere             anywhere            tcp
> flags:SYN,RST,ACK/SYN limit: avg 1/sec burst 5 LOG level info prefix
> `Inbound '
> DROP       tcp  --  anywhere             anywhere            tcp
> flags:SYN,RST,ACK/SYN
> LOG        tcp  --  anywhere             anywhere            tcp
> flags:FIN,SYN,RST,ACK/RST limit: avg 1/sec burst 5 LOG level info prefix
> `Inbound '
> DROP       tcp  --  anywhere             anywhere            tcp
> flags:FIN,SYN,RST,ACK/RST
> LOG        icmp --  anywhere             anywhere            icmp
> echo-request limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
> DROP       icmp --  anywhere             anywhere            icmp
> echo-request
> LOG        all  --  anywhere             anywhere            limit: avg
> 5/sec burst 5 LOG level info prefix `Inbound '
> DROP       all  --  anywhere             anywhere
> 
> Chain LSO (1 references)
> target     prot opt source               destination
> LOG_FILTER  all  --  anywhere             anywhere
> 
> Cosa devo correggere per poter accedere ad internet?
> Grazie
> Gfc
> 
> 

premesso che di networking so molto poco proverei a guardare:
info prefix `Unknown Forward'
info prefix `Unknown Input'

prova anche a spulciare questi doc
http://openskills.info/topic.php?ID=124



ciao




More information about the ubuntu-it mailing list