Fujitsu PRIMEQUEST 1000 Series Installation Manual page 166
Hide thumbs
Also See for PRIMEQUEST 1000 Series:
- User manual (905 pages) ,
- Tool reference (578 pages) ,
- General description manual (190 pages)
Table of Contents
Advertisement
PRIMEQUEST 1000 Series Installation Manual
CHAPTER 6 Work after Operating System Installation (PRIMEQUEST 1800E)
Chain OUTPUT (policy ACCEPT)
target
prot
Chain MMLAN (2 references)
target
prot
ACCEPT
udp
ACCEPT
udp
ACCEPT
udp
ACCEPT
udp
ACCEPT
udp
ACCEPT
udp
ACCEPT
udp
ACCEPT
udp
5. Add "MMLAN" to the fifth INPUT chain (before the REJECT setting) and to the OUTPUT chain. (For details
on the iptables option, see the man manual.)
# /sbin/iptables –I INPUT 5 –j MMLAN
# /sbin/iptables –A OUTPUT –j MMLAN
6. Execute the iptables -L command, and confirm that the MMLAN chains added to the INPUT and OUTPUT
chains are not interrupted by the previous REJECT, DROP, or other settings.
Example of settings:
# iptables –L
Chain INPUT (policy ACCEPT)
target
prot
ACCEPT
all
ACCEPT
icmp
ACCEPT
all
ACCEPT
tcp
MMLAN
all
REJECT
all
prohibited
Chain FORWARD (policy ACCEPT)
target
prot
REJECT
all
prohibited
Chain OUTPUT (policy ACCEPT)
target
prot
opt
source
opt
source
--
192.168.0.0/24
--
192.168.0.1
--
192.168.0.0/24
--
192.168.0.1
--
192.168.1.5
--
192.168.0.1
--
192.168.1.5
--
192.168.0.1
opt
source
destination
--
0.0.0.0/0
0.0.0.0/0
--
0.0.0.0/0
0.0.0.0/0
--
0.0.0.0/0
0.0.0.0/0
--
0.0.0.0/0
0.0.0.0/0
--
0.0.0.0/0
0.0.0.0/0
--
0.0.0.0/0
0.0.0.0/0
opt
source
destination
--
0.0.0.0/0
0.0.0.0/0
opt
source
destination
destination
destination
192.168.0.1
192.168.0.0/24
192.168.0.1
192.168.0.0/24
192.168.0.1
192.168.1.5
192.168.0.1
192.168.1.5
state RELATED,ESTABLISHED
state NEW tcp dpt:22
reject-with icmp-host-
reject-with icmp-host-
138
udp dpts:7000:7100
udp spts:7000:7100
udp dpt:162
udp spt:162
udp dpts:7000:7100
udp spts:7000:7100
udp dpt:162
udp spt:162
C122-E107-09EN
Advertisement
Table of Contents
