Bug 153063 - /etc/sysconfig/network-scripts/ifup refers to RH-Lokkit-0-50-INPUT iptables chain
Summary: /etc/sysconfig/network-scripts/ifup refers to RH-Lokkit-0-50-INPUT iptables c...
Keywords:
Status: CLOSED NOTABUG
Alias: None
Product: Fedora
Classification: Fedora
Component: initscripts
Version: 3
Hardware: i386
OS: Linux
medium
low
Target Milestone: ---
Assignee: Bill Nottingham
QA Contact: Brock Organ
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2005-04-01 08:05 UTC by Dennis Wagelaar
Modified: 2014-03-17 02:53 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2005-04-01 19:24:35 UTC
Type: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Dennis Wagelaar 2005-04-01 08:05:54 UTC 
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.6) Gecko/20050323 Firefox/1.0.2 Fedora/1.0.2-1.3.1

Description of problem:
There are some lines in the ifup script that try to punch a hole in the firewall for DNS clients if forwarding is used (iptables -D RH-Lokkit-0-50-INPUT -m udp -s 0/0 --sport 53 -d 0/0 --dport 1025:65535 -p udp -j ACCEPT). This chain is no longer used in FC3, so the commands don't accomplish anything.

I sometimes let my laptop do forwarding for my bluetooth PDA, but I already opened the firewall manually for all trusted addresses, so I am not affected.

Version-Release number of selected component (if applicable):
initscripts-7.93.7-1

How reproducible:
Didn't try


Additional info:
Comment 1 Bill Nottingham 2005-04-01 19:24:35 UTC 
It's there for configs still using the old firewall. At some point it can be
removed, but leaving it there doesn't hurt.
Note You need to log in before you can comment on or make changes to this bug.