Firewall issues

Wolf9466 · 2013-08-20 20:03:31

I just set up a firewall with iptables, and now pacman won't update. Does it need a port opened or something? Output is completely unfiltered.

brebs · 2013-08-20 20:51:58

So tell us how you're filtering INPUT

Wolf9466 · 2013-08-20 21:12:14

Everything dropped except certain ports.

brebs · 2013-08-20 21:28:24

You're being very coy. So the obvious answer is yes, you'll have to open up the firewall more.

iptables has "-j LOG", so you could take a look yourself at what you're unintentionally dropping.

Wolf9466 · 2013-08-20 21:52:52

Okay, I didn't think it mattered what exact ports were open, because I would have thought pacman would simply download packages and signature files.

Everything from lo is accepted without question.
Everything entering eth0 is dropped, except for the following ports: 22, 80, 2222, 3333, 3690, 5555, 6666, 7777, 8888, 9999, & 19323.

brebs · 2013-08-20 22:31:36

Have you excluded this important line?

-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT

Wolf9466 · 2013-08-20 22:51:43

Yep, thanks.

fukawi2 · 2013-08-20 23:32:41

For future reference, please include all relevant information when asking for assistance... In this instance, posting the output of `iptables -nvL` or `iptables-save` would have identified the issue much faster and easier.

Arch Linux

#1 2013-08-20 20:03:31

Firewall issues

#2 2013-08-20 20:51:58

Re: Firewall issues

#3 2013-08-20 21:12:14

Re: Firewall issues

#4 2013-08-20 21:28:24

Re: Firewall issues

#5 2013-08-20 21:52:52

Re: Firewall issues

#6 2013-08-20 22:31:36

Re: Firewall issues

#7 2013-08-20 22:51:43

Re: Firewall issues

#8 2013-08-20 23:32:41

Re: Firewall issues

Board footer