Operating System - Linux
1830241 Members
1409 Online
109999 Solutions
New Discussion

Re: Cannot invoke GUI due , If I enable Iptables

 
SOLVED
Go to solution
skiran
Advisor

Cannot invoke GUI due , If I enable Iptables



Hi ,

I have enabled Iptables on our linux (SLES 9 )box. and used following rules..

*filter
:INPUT DROP [99:14044]
:FORWARD DROP [0:0]
:OUTPUT DROP [40:2810]
-A INPUT -s xx.xx.xx.0/255.255.255.224 -j ACCEPT
-A FORWARD -j DROP
-A OUTPUT -d xx.xx.xx.0/255.255.255.224 -j ACCEPT
COMMIT

If I use this rules . I can connect to the machine, But I cannot invoke any GUI(xterm etc..) from same xx.xx.xx.0 network. It hangs .. Is there any problem with my iptables rules. If I disable the iptable , I can open GUI.
Can any one throw some light on this.

Thanks,
Shashi
2 REPLIES 2
Indrajit_1
Valued Contributor

Re: Cannot invoke GUI due , If I enable Iptables

Hi Skiran,

Yes, ur iptables rules is stoping to access GUI in remote machine.. see the following rule u have set up..

FORWARD DROP [0:0]

remove the rule. . use iptalbe -d option..

see man iptables for more information..


cheers
indrajit
Never Ever Give Up
Ivan Ferreira
Honored Contributor
Solution

Re: Cannot invoke GUI due , If I enable Iptables

You must enable full access for the loopback interface.

-A INPUT -s 127.0.0.1 -j ACCEPT

To easy your configuration, search for rc.firewall in sourceforge.net.

This is a script that simplfies the process of configuring a firewall.

You don't need the -A FORWARD -j DROP because your policy is already drop.

Normally, you don't have to restrict output packets in a host that is not a router.
Por que hacerlo dificil si es posible hacerlo facil? - Why do it the hard way, when you can do it the easy way?