SuSEFirewall2 blocks whois request

Hello NG,

if i'd like to ask ripe.net via ~>whois [IP] - the Firewall blocks the
reception of the answer.
I am using Suse 9.0 and firewall2. I just allow ssh for my system.
Does anybody know how to modify the firewall in order to allow whois
requests?

Thanks
Chris

On Sat, 24 Apr 2004, Christoph Schwarz <(E-Mail Removed)> wrote:
> Hello NG,
>
> if i'd like to ask ripe.net via ~>whois [IP] - the Firewall blocks the
> reception of the answer.
> I am using Suse 9.0 and firewall2. I just allow ssh for my system.
> Does anybody know how to modify the firewall in order to allow whois
> requests?

Does anything show up in /var/log/messages about the blocked request or
reply? I have not used SuSE 9, but have used SuSEfirewall2 in 7.3 Pro,
8.0 and 8.2 Pro, and it has never blocked whois from the firewall or from
masqueraded LAN behind it. So it is puzzling what you might have
specifically set to block it (assuming you properly set FW_DEV_EXT). Any
custom rules?

Do you have trouble with any other internet access besides whois?

--
David Efflandt - All spam ignored http://www.de-srv.com/

Christoph Schwarz wrote:

> Hello NG,
>
> if i'd like to ask ripe.net via ~>whois [IP] - the Firewall blocks the
> reception of the answer.
> I am using Suse 9.0 and firewall2. I just allow ssh for my system.
> Does anybody know how to modify the firewall in order to allow whois
> requests?
>
> Thanks
> Chris
Hi,

who is uses tcp port 43. So just add
iptables -I INPUT 1 -p tcp --dport 43 -j ACCEPT
to your rules. Using firewall 2, this rule belongs in
/etc/sysconfig/scrits/SuseFirewall2-custom

Alex

David Efflandt wrote:

> On Sat, 24 Apr 2004, Christoph Schwarz <(E-Mail Removed)> wrote:
>> Hello NG,
>>
>> if i'd like to ask ripe.net via ~>whois [IP] - the Firewall blocks the
>> reception of the answer.
>> I am using Suse 9.0 and firewall2. I just allow ssh for my system.
>> Does anybody know how to modify the firewall in order to allow whois
>> requests?
>
> Does anything show up in /var/log/messages about the blocked request or
> reply? I have not used SuSE 9, but have used SuSEfirewall2 in 7.3 Pro,
> 8.0 and 8.2 Pro, and it has never blocked whois from the firewall or from
> masqueraded LAN behind it. So it is puzzling what you might have
> specifically set to block it (assuming you properly set FW_DEV_EXT). Any
> custom rules?
>
> Do you have trouble with any other internet access besides whois?
>

No - i've no trouble with other access
/VAr/log/messages says:
SuSE-FW-OUT-IPv6_PROHIB IN= OUT=eth0 SRC=fe80:0000.......

FW-Out .. does that mean the whois request is not routed to the
outside?

Chris