[CentOS] Default CentOS(Redhat) iptables, Secure?

Mark Sargent powderkeg at snow.email.ne.jp
Wed Nov 30 12:16:17 UTC 2005


Hi All,

whilst not being an expert on iptables, the below ouput of iptables -L 
seems too insecure to me. Does anyone agree.? Perhaps I'm not 
understanding it as well as I think I am.? Please give your thoughts on 
this. Cheers.

Mark  Sargent.


[root at localhost racket]# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
RH-Firewall-1-INPUT  all  --  anywhere             anywhere

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination
RH-Firewall-1-INPUT  all  --  anywhere             anywhere

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Chain RH-Firewall-1-INPUT (2 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere
ACCEPT     icmp --  anywhere             anywhere            icmp any
ACCEPT     ipv6-crypt--  anywhere             anywhere
ACCEPT     ipv6-auth--  anywhere             anywhere
ACCEPT     udp  --  anywhere             224.0.0.251         udp dpt:5353
ACCEPT     udp  --  anywhere             anywhere            udp dpt:ipp
ACCEPT     all  --  anywhere             anywhere            state 
RELATED,ESTABLISHED
REJECT     all  --  anywhere             anywhere            reject-with 
icmp-host-prohibited
You have new mail in /var/spool/mail/root



More information about the CentOS mailing list