Debian 5.0 (lenny) & IP Tables

i need to open port 80 for all public and private traffic on a Debian 5.0 (lenny) server.  Shorewall is installed but stopped.  How do i allow this traffic to pass?
deklinmAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

FastSiCommented:
Sorry trying to do this with IP Tables or Shorewall?

IP Tables

iptables -A INPUT -p tcp --dport 80 -j ACCEPT
iptables-save
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
nmitevCommented:
If you enter
iptables -L -v -n

Open in new window

you will see the currently active rules relating to traffic filtering. An empty rule set looks like
Chain INPUT (policy ACCEPT 16 packets, 2067 bytes)
num   pkts bytes target     prot opt in     out     source               destination         

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
num   pkts bytes target     prot opt in     out     source               destination         

Chain OUTPUT (policy ACCEPT 8 packets, 1365 bytes)
num   pkts bytes target     prot opt in     out     source               destination         

Open in new window


If Shorewall is stopped then most likely the rule set in iptables will not be empty.

Adding the permissions with
iptables -A INPUT -p tcp --dport 80 -j ACCEPT

Open in new window

will work until the next reboot or restart of the networking service.
Making this rule persist can be done in many ways, but iptables-save will only dump the current rules to the terminal and will not actually save anything.

You can do iptables-save > /path-of-your-choice/filename-of-your-choice
and after a reboot iptables-restore < same path/file as above which is the manual solution.

You can try to locate the script doing the restore at boot time with
cd /etc
grep -r iptables-restore ./*

Open in new window

0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Linux

From novice to tech pro — start learning today.