153063 – /etc/sysconfig/network-scripts/ifup refers to RH-Lokkit-0-50-INPUT iptables chain

Bug 153063 - /etc/sysconfig/network-scripts/ifup refers to RH-Lokkit-0-50-INPUT iptables chain

Summary: /etc/sysconfig/network-scripts/ifup refers to RH-Lokkit-0-50-INPUT iptables c...

Status:	CLOSED NOTABUG
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	initscripts
Sub Component:
Version:	3
Hardware:	i386
OS:	Linux
Priority:	medium
Severity:	low
Target Milestone:	---
Assignee:	Bill Nottingham
QA Contact:	Brock Organ
Docs Contact:
URL:
Whiteboard:
Keywords:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2005-04-01 08:05 UTC by Dennis Wagelaar
Modified:	2014-03-17 02:53 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:
Doc Text:	(edit)
Clone Of:
Environment:	(edit)
Last Closed:	2005-04-01 19:24:35 UTC
Dependent Products:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Dennis Wagelaar 2005-04-01 08:05:54 UTC

From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.6) Gecko/20050323 Firefox/1.0.2 Fedora/1.0.2-1.3.1

Description of problem:
There are some lines in the ifup script that try to punch a hole in the firewall for DNS clients if forwarding is used (iptables -D RH-Lokkit-0-50-INPUT -m udp -s 0/0 --sport 53 -d 0/0 --dport 1025:65535 -p udp -j ACCEPT). This chain is no longer used in FC3, so the commands don't accomplish anything.

I sometimes let my laptop do forwarding for my bluetooth PDA, but I already opened the firewall manually for all trusted addresses, so I am not affected.

Version-Release number of selected component (if applicable):
initscripts-7.93.7-1

How reproducible:
Didn't try


Additional info:

Comment 1 Bill Nottingham 2005-04-01 19:24:35 UTC

It's there for configs still using the old firewall. At some point it can be
removed, but leaving it there doesn't hurt.

Note You need to log in before you can comment on or make changes to this bug.