SuSEFirewall2 blocks whois request
This is a discussion on SuSEFirewall2 blocks whois request within the Linux Networking forums, part of the Linux Forums category; Hello NG, if i'd like to ask ripe.net via ~>whois [IP] - the Firewall blocks the reception of ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
04-24-2004
|
|||
|
|||
SuSEFirewall2 blocks whois request
Hello NG,
if i'd like to ask ripe.net via ~>whois [IP] - the Firewall blocks the reception of the answer. I am using Suse 9.0 and firewall2. I just allow ssh for my system. Does anybody know how to modify the firewall in order to allow whois requests? Thanks Chris 
|
|
04-25-2004
|
|||
|
|||
|
Re: SuSEFirewall2 blocks whois request
On Sat, 24 Apr 2004, Christoph Schwarz <gc.schwarz@web.de> wrote:
> Hello NG, > > if i'd like to ask ripe.net via ~>whois [IP] - the Firewall blocks the > reception of the answer. > I am using Suse 9.0 and firewall2. I just allow ssh for my system. > Does anybody know how to modify the firewall in order to allow whois > requests? Does anything show up in /var/log/messages about the blocked request or reply? I have not used SuSE 9, but have used SuSEfirewall2 in 7.3 Pro, 8.0 and 8.2 Pro, and it has never blocked whois from the firewall or from masqueraded LAN behind it. So it is puzzling what you might have specifically set to block it (assuming you properly set FW_DEV_EXT). Any custom rules? Do you have trouble with any other internet access besides whois? -- David Efflandt - All spam ignored http://www.de-srv.com/
|
|
04-25-2004
|
|||
|
|||
|
Re: SuSEFirewall2 blocks whois request
Christoph Schwarz wrote:
> Hello NG, > > if i'd like to ask ripe.net via ~>whois [IP] - the Firewall blocks the > reception of the answer. > I am using Suse 9.0 and firewall2. I just allow ssh for my system. > Does anybody know how to modify the firewall in order to allow whois > requests? > > Thanks > Chris Hi, who is uses tcp port 43. So just add iptables -I INPUT 1 -p tcp --dport 43 -j ACCEPT to your rules. Using firewall 2, this rule belongs in /etc/sysconfig/scrits/SuseFirewall2-custom Alex
|
|
04-26-2004
|
|||
|
|||
|
Re: SuSEFirewall2 blocks whois request
David Efflandt wrote:
> On Sat, 24 Apr 2004, Christoph Schwarz <gc.schwarz@web.de> wrote: >> Hello NG, >> >> if i'd like to ask ripe.net via ~>whois [IP] - the Firewall blocks the >> reception of the answer. >> I am using Suse 9.0 and firewall2. I just allow ssh for my system. >> Does anybody know how to modify the firewall in order to allow whois >> requests? > > Does anything show up in /var/log/messages about the blocked request or > reply? I have not used SuSE 9, but have used SuSEfirewall2 in 7.3 Pro, > 8.0 and 8.2 Pro, and it has never blocked whois from the firewall or from > masqueraded LAN behind it. So it is puzzling what you might have > specifically set to block it (assuming you properly set FW_DEV_EXT). Any > custom rules? > > Do you have trouble with any other internet access besides whois? > No - i've no trouble with other access /VAr/log/messages says: SuSE-FW-OUT-IPv6_PROHIB IN= OUT=eth0 SRC=fe80:0000....... FW-Out .. does that mean the whois request is not routed to the outside? Chris
|
Linear Mode
