View Single Post
  #8  
Old 28th August 2007, 22:48
bswinnerton bswinnerton is offline
Senior Member
 
Join Date: Jul 2007
Location: Connecticut, US
Posts: 502
Thanks: 51
Thanked 16 Times in 13 Posts
Default

Okay, iptables -l shows:

Code:
Chain INPUT (policy DROP)
target     prot opt source               destination        
ACCEPT     tcp  --  home                 anywhere            tcp flags:!FIN,SYN,RST,ACK/SYN
ACCEPT     udp  --  home                 anywhere           
ACCEPT     0    --  anywhere             anywhere           
ACCEPT     icmp --  anywhere             anywhere            limit: avg 10/sec burst 5
DROP       0    --  anywhere             255.255.255.255    
DROP       0    --  anywhere             adsl-76-243-116-255.dsl.wlfrct.sbcglobal.net
DROP       0    --  BASE-ADDRESS.MCAST.NET/8  anywhere           
DROP       0    --  anywhere             BASE-ADDRESS.MCAST.NET/8
DROP       0    --  255.255.255.255      anywhere           
DROP       0    --  anywhere             0.0.0.0            
DROP       0    --  anywhere             anywhere            state INVALID
LSI        0    -f  anywhere             anywhere            limit: avg 10/min burst 5
INBOUND    0    --  anywhere             anywhere           
LOG_FILTER  0    --  anywhere             anywhere           
LOG        0    --  anywhere             anywhere            LOG level info prefix `Unknown Input'

Chain FORWARD (policy DROP)
target     prot opt source               destination        
ACCEPT     icmp --  anywhere             anywhere            limit: avg 10/sec burst 5
LOG_FILTER  0    --  anywhere             anywhere           
LOG        0    --  anywhere             anywhere            LOG level info prefix `Unknown Forward'

Chain OUTPUT (policy DROP)
target     prot opt source               destination        
ACCEPT     tcp  --  ubuntuserver         home                tcp dpt:domain
ACCEPT     udp  --  ubuntuserver         home                udp dpt:domain
ACCEPT     0    --  anywhere             anywhere           
DROP       0    --  BASE-ADDRESS.MCAST.NET/8  anywhere           
DROP       0    --  anywhere             BASE-ADDRESS.MCAST.NET/8
DROP       0    --  255.255.255.255      anywhere           
DROP       0    --  anywhere             0.0.0.0            
DROP       0    --  anywhere             anywhere            state INVALID
OUTBOUND   0    --  anywhere             anywhere           
LOG_FILTER  0    --  anywhere             anywhere           
LOG        0    --  anywhere             anywhere            LOG level info prefix `Unknown Output'

Chain INBOUND (1 references)
target     prot opt source               destination        
ACCEPT     tcp  --  anywhere             anywhere            state RELATED,ESTABLISHED
ACCEPT     udp  --  anywhere             anywhere            state RELATED,ESTABLISHED
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:5900
ACCEPT     udp  --  anywhere             anywhere            udp dpt:5900
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:3389
ACCEPT     udp  --  anywhere             anywhere            udp dpt:3389
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:smtp
ACCEPT     udp  --  anywhere             anywhere            udp dpt:25
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:bootps
ACCEPT     udp  --  anywhere             anywhere            udp dpt:bootps
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:mysql
ACCEPT     udp  --  anywhere             anywhere            udp dpt:mysql
ACCEPT     tcp  --  anywhere             anywhere            tcp dpts:www:81
ACCEPT     udp  --  anywhere             anywhere            udp dpts:www:81
LSI        0    --  anywhere             anywhere           

Chain LOG_FILTER (5 references)
target     prot opt source               destination        

Chain LSI (2 references)
target     prot opt source               destination        
LOG_FILTER  0    --  anywhere             anywhere           
LOG        tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
DROP       tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN
LOG        tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/RST limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
DROP       tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/RST
LOG        icmp --  anywhere             anywhere            icmp echo-request limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
DROP       icmp --  anywhere             anywhere            icmp echo-request
LOG        0    --  anywhere             anywhere            limit: avg 5/sec burst 5 LOG level info prefix `Inbound '
DROP       0    --  anywhere             anywhere           

Chain LSO (1 references)
target     prot opt source               destination        
LOG_FILTER  0    --  anywhere             anywhere           
LOG        0    --  anywhere             anywhere            limit: avg 5/sec burst 5 LOG level info prefix `Outbound '
REJECT     0    --  anywhere             anywhere            reject-with icmp-port-unreachable

Chain OUTBOUND (1 references)
target     prot opt source               destination        
ACCEPT     icmp --  anywhere             anywhere           
ACCEPT     tcp  --  anywhere             anywhere            state RELATED,ESTABLISHED
ACCEPT     udp  --  anywhere             anywhere            state RELATED,ESTABLISHED
ACCEPT     0    --  anywhere             10.0.1.37          
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:www
ACCEPT     udp  --  anywhere             anywhere            udp dpt:www
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:https
ACCEPT     udp  --  anywhere             anywhere            udp dpt:https
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:smtp
ACCEPT     udp  --  anywhere             anywhere            udp dpt:25
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:ssh
ACCEPT     udp  --  anywhere             anywhere            udp dpt:ssh
ACCEPT     tcp  --  anywhere             anywhere            tcp dpts:ftp-data:ftp
ACCEPT     udp  --  anywhere             anywhere            udp dpts:20:fsp
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:81
ACCEPT     udp  --  anywhere             anywhere            udp dpt:81
LSO        0    --  anywhere             anywhere
and netstat -tap shows the following:

Code:
(Not all processes could be identified, non-owned process info
 will not be shown, you would have to be root to see it all.)
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name  
tcp        0      0 localhost:2208          *:*                     LISTEN     -                  
tcp        0      0 *:mysql                 *:*                     LISTEN     -                  
tcp        0      0 *:www                   *:*                     LISTEN     -                  
tcp        0      0 *:81                    *:*                     LISTEN     -                  
tcp        0      0 ubuntuserver:domain     *:*                     LISTEN     -                  
tcp        0      0 localhost:domain        *:*                     LISTEN     -                  
tcp        0      0 localhost:ipp           *:*                     LISTEN     -                  
tcp        0      0 *:smtp                  *:*                     LISTEN     -                  
tcp        0      0 localhost:953           *:*                     LISTEN     -                  
tcp        0      0 localhost:2207          *:*                     LISTEN     -                  
tcp6       0      0 *:imaps                 *:*                     LISTEN     -                  
tcp6       0      0 *:pop3s                 *:*                     LISTEN     -                  
tcp6       0      0 *:5900                  *:*                     LISTEN     5410/vino-server   
tcp6       0      0 *:pop3                  *:*                     LISTEN     -                  
tcp6       0      0 *:imap2                 *:*                     LISTEN     -                  
tcp6       0      0 *:ftp                   *:*                     LISTEN     -                  
tcp6       0      0 *:ssh                   *:*                     LISTEN     -                  
tcp6       0      0 *:smtp                  *:*                     LISTEN     -                  
tcp6       0      0 ip6-localhost:953       *:*                     LISTEN     -                  
tcp6       0      0 ubuntuserver:5900       66-159-147-201.ad:49156 ESTABLISHED5410/vino-server
P.S. I just noticed that I cannot ping my servers ip address, I can however get through to the website and I can also ping my webservers router, not sure if this has anything to do with it, but anything that may help.

Last edited by bswinnerton; 29th August 2007 at 04:47.
Reply With Quote