On Tue, 2006-12-12 at 08:26 -0300, Departamento de Informatica wrote: > Thanks, I've configured the vnc server, on port 5901, lamentably i > only have acces from localhost, with nmap the port 5901 appears like > "filtered", just need to changue some thing on Iptables configuration, > because i did > > iptables -A INPUT -p TCP -i eth1 -s 10.20.30.0/24 --dport 5901 -j ACCEPT > > and still have no access from my network ALSO ... being quite obvious ... if you have an "all reject" in the chain, you need to do iptables -L and make sure the new rule is above the reject all rule ... or the packet will never make it that far. If you have a script to restart the firewall, add it there instead (above the reject line). also, I don't use CAPS for my -p or my -m switches ... no idea if that matters or not :P And if all this seems trivial to you, slap me and I will stop with all the easy/obvious stuff :) -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part URL: <http://lists.centos.org/pipermail/centos/attachments/20061212/564b3702/attachment-0005.sig>