[CentOS] Why is iptables configured to accept packets on ports 50 and 51?

Tue May 17 18:20:17 UTC 2011
Stephen Harris <lists at spuddy.org>

> -A RH-Firewall-1-INPUT -p 50 -j ACCEPT
> -A RH-Firewall-1-INPUT -p 51 -j ACCEPT

That's _protocol_ 50 and 51; not ports 50 and 51

% grep '5[01]' /etc/protocols 
esp     50      ESP             # Encap Security Payload
ah      51      AH              # Authentication Header

IPSec traffic.

-- 

rgds
Stephen