Networking Forums
Home Register Members Search Links
Member Login:

Networking Forums > Computer Networking > Linux Networking > What does this IPTABLE entry mean?

Reply
Thread Tools Display Modes

What does this IPTABLE entry mean?

 
 
news@celticbear.com
Guest
Posts: n/a

 
      11-08-2005, 09:53 PM
I know nothing about IPTABLES.
Playing around, I ran "# iptables -L" and found something weird.
In /etc.sysconfig/iptables there's this line:

-A RH-Firewall-1-INPUT -p udp --dport 5353 -d 224.0.0.251 -j ACCEPT

What does that mean? I get that it has something to do with incoming
UDP packets on port 5353 from IP 224.0.0.251 are always accepted, yes?
Do I have that right?

I know nothing of that IP address. It's not familiar to me.

A whois on it gives me an error... so, I'm really hoping that it's one
of those reserved IP's like 127.0.0.1 that's a loopback, and some
service or something has a legitimate use for it.

Any feedback, much appreciated!
Liam
 
Reply With Quote
 
 
 
 
news@celticbear.com
Guest
Posts: n/a

 
      11-08-2005, 10:38 PM

Edward Leiper wrote:
> That IP address is a multicast one used by mDNS - which Apple calls
> Rendezvous. I'd say that this rule is to allow your machine to
> receive query packets asking what services it is running. Have a look
> for a process called mDNSresponder or similar.
>
> ~Ed

Thanks for the reply!
I grepped a "ps aux" and found:

nobody 3473 0.0 0.0 13384 456 ? Ssl Oct28 0:00
mDNSResponder

Odd. Is that a good, bad, or indifferent thing? ("Apple?" This is a
Fedora 3 box. Weird.)

Well, I'll look into it.
Thanks again for the help!
-Liam
 
Reply With Quote
 
Edward Leiper
Guest
Posts: n/a

 
      11-08-2005, 10:42 PM
That IP address is a multicast one used by mDNS - which Apple calls
Rendezvous. I'd say that this rule is to allow your machine to
receive query packets asking what services it is running. Have a look
for a process called mDNSresponder or similar.

~Ed
 
Reply With Quote
 
Thomas Bosch
Guest
Posts: n/a

 
      11-09-2005, 07:40 AM
If you want to serve mDNS for people in the internet then keep the entry.
If not delete it.
For you it doesn't make any difference.



(E-Mail Removed) wrote:
>
> Edward Leiper wrote:
>> That IP address is a multicast one used by mDNS - which Apple calls
>> Rendezvous. I'd say that this rule is to allow your machine to
>> receive query packets asking what services it is running. Have a look
>> for a process called mDNSresponder or similar.
>>
>> ~Ed
>
> Thanks for the reply!
> I grepped a "ps aux" and found:
>
> nobody 3473 0.0 0.0 13384 456 ? Ssl Oct28 0:00
> mDNSResponder
>
> Odd. Is that a good, bad, or indifferent thing? ("Apple?" This is a
> Fedora 3 box. Weird.)
>
> Well, I'll look into it.
> Thanks again for the help!
> -Liam
 
Reply With Quote
 
 
 
Reply

« Hard Drive cloning tool in linux | make atmel usb adapter on linux <-communicate-> 2wire 1702hg homeportal ? »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
iptable freezeup Sargon Linux Networking 1 12-15-2003 11:47 AM
iptable chewing up CPU Your name Linux Networking 0 10-17-2003 02:50 AM
Help on NetMeeting over iptable Eric Linux Networking 0 10-03-2003 10:51 AM
RFE entries in IPTABLE Rob Simac Linux Networking 2 09-25-2003 04:27 PM
iptable question Rob Simac Linux Networking 1 09-11-2003 09:46 PM


Forum Software Powered by vBulletin®, Copyright Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11