Hi folks, Ubuntu LAMP 6.06 amd64 IP 192.168.0.52 Local PC IP 192.168.0.10 Without iptables running the local PC can ssh connect the server at port 2222. Just have iptables up running local PC fails to ssh-connect the server $ ssh -p 2222 192.168.0.52 Code: ssh: connect to host 192.168.0.52 port 2222: Connection timed out $ tail /var/log/lastlog (local PC) Code: ϢiHtty4A�HttySKGtty1Gtty1�BGtty1satimis@mail:~$ $ tail /var/log/faillog (local PC) Code: tty1���tty1 toHtty1#�Hsatimis@mail:~$ I can't understand the meaning of the codes. Are these the right files to check? $ cat /etc/rc.local Code: #!/bin/sh -e # # rc.local # # This script is executed at the end of each multiuser runlevel. # Make sure that the script will "exit 0" on success or any other # value on error. # # In order to enable or disable this script just change the execution # bits. # # By default this script does nothing. # INPUT # Set the default policy to drop iptables -P INPUT DROP # Allow existing connections to continue iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT # Allow the server to talk to itself iptables -A INPUT -i lo -j ACCEPT # Allow ssh from workstation local IP iptables -A INPUT -s 192.168.0.10 -p tcp --dport 22 -j ACCEPT iptables -A INPUT -p icmp --icmp-type echo-request -j ACCEPT iptables -A INPUT -j LOG # OUTPUT # Set the default policy to drop iptables -P OUTPUT ACCEPT # Allow existing connections to continue iptables -A OUTPUT -m state --state RELATED,ESTABLISHED -j ACCEPT # Allow the server to talk to itself iptables -A OUTPUT -d 127.0.0.1 -j ACCEPT # Allow DNS requests out iptables -A OUTPUT -p udp --dport 53 -j ACCEPT iptables -A OUTPUT -p tcp --dport 53 -j ACCEPT iptables -A OUTPUT -p icmp --icmp-type echo-request -j ACCEPT Please advise. TIA B.R. satimis
