[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] NTP and 'ipchains'

Subject: [ale] NTP and 'ipchains'
From: johnmills at speakeasy.net (John Mills)
Date: Sat Jan 17 18:32:59 2004
In-reply-to: <[email protected]>

Doug -

Thanks for answering my question.

On 17 Jan 2004, Doug McNash wrote:

> If you have a rule using connection tracking ($IPTABLES -A allowed -p
> TCP -m state --state ESTABLISHED,RELATED -j ACCEPT) then responses are
> allowed to connection initiated from the inside.

I may add that, though so far I haven't seen any functional failures 
except NTP.

> But,alas, udp is connectionless so you need the explicit rule.

I fumbled around a bit before finding out the firewall was my roadblock, 
and I am more comfortable now that I have an explanation.

 - John Mills
   john.m.mills at alum.mit.edu

References:
- [ale] NTP and 'ipchains'
  - From: dmcnash at charter.net (Doug McNash)

Prev by Date: [ale] Open Source Apps [OT]
Next by Date: [ale] XML Tidying Program
Previous by thread: [ale] NTP and 'ipchains'
Next by thread: [ale] XML Tidying Program
Index(es):
- Date
- Thread