IP-tables configuration for a Workstation

10-23-2005, 06:36 PM

Hi.

I've found the following IP-tables configuration for a Workstation:

(1) iptables –F
(2) iptables –X
(3) iptables –P INPUT DROP
(4) iptables –P OUTPUT ACCEPT
(5) iptables –P FORWARD DROP
(6) iptables –A INPUT –i lo –j ACCEPT
(7) iptables –A INPUT –m state --state ESTABLISHED,RELATED
–j ACCEPT

Could somebody tell me the meaning of the rule (6)? I guess that "lo" is
the "virtual" interface to the localhost (127.0.0.0), but: what's the
meaning of openning the loopback interface?

Thank you.

10-23-2005, 08:11 PM

Jordi <(E-Mail Removed)> wrote:
> Hi.
>
> I've found the following IP-tables configuration for a Workstation:
>
> (1) iptables ?F
> (2) iptables ?X
> (3) iptables ?P INPUT DROP
> (4) iptables ?P OUTPUT ACCEPT
> (5) iptables ?P FORWARD DROP
> (6) iptables ?A INPUT ?i lo ?j ACCEPT
> (7) iptables ?A INPUT ?m state --state ESTABLISHED,RELATED ?j ACCEPT
>
> Could somebody tell me the meaning of the rule (6)? I guess that "lo" is
> the "virtual" interface to the localhost (127.0.0.0), but: what's the
> meaning of openning the loopback interface?

Try it with the rule, then without. You'll see.

--
William Park <(E-Mail Removed)>, Toronto, Canada
ThinFlash: Linux thin-client on USB key (flash) drive
http://home.eol.ca/~parkw/thinflash.html
BashDiff: Super Bash shell
http://freshmeat.net/projects/bashdiff/

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
IP tables help	CCW	Linux Networking	0	05-17-2008 11:59 AM
Access to the NAT tables	Alvaro	Linux Networking	2	12-05-2005 04:10 PM
Configuring IP Tables	Max	Linux Networking	1	07-28-2004 06:22 AM
Route tables	Scott Dortch	Linux Networking	5	02-05-2004 12:28 AM
XP workstation cannot open shares on WIN98 workstation	Franklin Sterns	Windows Networking	1	10-19-2003 05:40 AM