Koozali.org: home of the SME Server
Legacy Forums => Experienced User Forum => Topic started by: bvdam on December 18, 2002, 05:26:23 PM
-
I am having a problem with that all my outgoing ports are closed except port 80.
My ipchains looks like this:
Chain output (policy ACCEPT):
target prot opt source destination ports
icmpOut icmp ------ 0.0.0.0/0 0.0.0.0/0 * -> *
- tcp ------ 0.0.0.0/0 0.0.0.0/0 * -> 80
- tcp ------ 0.0.0.0/0 0.0.0.0/0 * -> 22
- tcp ------ 0.0.0.0/0 0.0.0.0/0 * -> 23
- tcp ------ 0.0.0.0/0 0.0.0.0/0 * -> 21
- tcp ------ 0.0.0.0/0 0.0.0.0/0 * -> 110
- tcp ------ 0.0.0.0/0 0.0.0.0/0 * -> 25
- tcp ------ 0.0.0.0/0 0.0.0.0/0 * -> 20
ACCEPT all ------ 0.0.0.0/0 0.0.0.0/0 n/a
ACCEPT all ------ 0.0.0.0/0 0.0.0.0/0 n/a
ACCEPT all ------ 0.0.0.0/0 0.0.0.0/0 n/a
DENY all ------ 224.0.0.0/4 0.0.0.0/0 n/a
DENY all ------ 0.0.0.0/0 224.0.0.0/4 n/a
ACCEPT icmp ------ 192.168.0.0/24 0.0.0.0/0 * -> *
ACCEPT all ------ 0.0.0.0/0 192.168.0.0/24 n/a
ACCEPT tcp !y---- 212.55.51.74 0.0.0.0/0 80 -> *
ACCEPT tcp !y---- 212.55.51.74 0.0.0.0/0 443 -> *
ACCEPT tcp !y---- 212.55.51.74 0.0.0.0/0 143 -> *
ACCEPT tcp !y---- 212.55.51.74 0.0.0.0/0 110 -> *
ACCEPT tcp !y---- 212.55.51.74 0.0.0.0/0 21 -> *
ACCEPT tcp !y---- 212.55.51.74 0.0.0.0/0 25 -> *
ACCEPT all ------ 0.0.0.0/0 0.0.0.0/0 n/a
Where should i look?
What do IP Masquerading entries show? It seems as they show all the connections that fail.
Thanks
-
I have tried the "Port Opening" contrib to SME. It adds this line:
ACCEPT tcp !y---- 212.55.51.74 0.0.0.0/0 portno -> *
But I still can't get a connection through the port.
-
I solved the problem. It worked when I used another nic rather than the embedded Intel 1000 with the driver from http://myezserver.com/downloads/mitel/contrib/Intel/e1000-4.3.15-sme55.i386.rpm
I'll just have to wait for a newer driver. Perhaps it will work.