Google
  Web www.spinics.net

Re: Firewall is loosing it's marbles

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 
On Fri, March 14, 2008 8:48 am, Waldher, Travis R wrote:
> I've got a pretty strict firewall setup on a machine that acts as a
> gateway between a production environment and a test environment.
>
>
>
> Users will log in to the box to access the test environment, the box is
> running RHEL5.  Once in, it's like the roach motel, no one gets back out
> to the real world from the test world.
>
>
>
> My firewall is working fine, but it seems to loose it's marbles and deny
> ssh but still allow pings from the outside after a day or two.  Wiping
> out the tables and re-applying them corrects the issue but obviously
> this is a poor solution.
>
>
>
> Has anyone else seen iptables partially stop working like this?

Once, on a smoothwall where there was a bug with the MMS (multimedia) kernel
modules. I disabled them (rmmod) and the firewall seemed to work fine after. I
replaced it because it was on our main gateway, so don't know if there were
other issues, or if the bug has been fixed. It would spontaneiously reboot
after a time, or if certain types of multi-media were streamed. Annoying.

Karl

>
> _______________________________________________
> Redhat-install-list mailing list
> Redhat-install-list@xxxxxxxxxx
> https://www.redhat.com/mailman/listinfo/redhat-install-list
> To Unsubscribe Go To ABOVE URL or send a message to:
> redhat-install-list-request@xxxxxxxxxx
> Subject: unsubscribe


-- 
Karl L. Pearson
karlp@xxxxxxxxxxxxxxxx
http://consulting.ourldsfamily.com
---
 My Thoughts on Terrorism In America right after 9/11/2001:
 http://www.ourldsfamily.com/wtc.shtml
---
 The world is a dangerous place to live... not because of
 the people who are evil, but because of the people who
 don't do anything about it.
 - Albert Einstein
---
"To mess up your Linux PC, you have to really work at it;
 to mess up a microsoft PC you just have to work on it."
---

_______________________________________________
Redhat-install-list mailing list
Redhat-install-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/redhat-install-list
To Unsubscribe Go To ABOVE URL or send a message to:
redhat-install-list-request@xxxxxxxxxx
Subject: unsubscribe

[Red Hat Kickstart]     [Fedora Users]     [Red Hat General]     [Red Hat Development]     [Samba]     [Kernel]     [Kernel Newbies]     [Hot Springs]     [Yosemite News]

Powered by Linux