Bug 68151 - High security blocks access to internet
Summary: High security blocks access to internet
Keywords:
Status: CLOSED DUPLICATE of bug 68368
Alias: None
Product: Red Hat Public Beta
Classification: Retired
Component: gnome-lokkit
Version: limbo
Hardware: i386
OS: Linux
medium
low
Target Milestone: ---
Assignee: Bill Nottingham
QA Contact: Ben Levenson
URL:
Whiteboard:
: 67575 (view as bug list)
Depends On:
Blocks: 67217
TreeView+ depends on / blocked
 
Reported: 2002-07-07 01:00 UTC by Jim Hall
Modified: 2014-03-17 02:28 UTC (History)
1 user (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2002-07-08 17:41:43 UTC
Embargoed:


Attachments (Terms of Use)

Description Jim Hall 2002-07-07 01:00:13 UTC
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.1) Gecko/20020625

Description of problem:
I set my system to "High" security during install.  Even though I had defined my
other local (home) network hosts in my /etc/hosts file, I could only talk to my
other box using its IP address.  I also couldn't ping anything on the internet
through my residential gateway.

This only happens when security is set to High.  Setting the security to
"Medium" or turning off the firewall means I have access to everything.

Version-Release number of selected component (if applicable): lokkit-0.50-14



How reproducible:
Always

Steps to Reproduce:
In RH7x, lokkit used ipchains when you set up your personal firewall.  iptables
was available for you, but lokkit wrote ipchains rules.  And when I set up my
RH7.3 system before, I set it to "High" security, so that only DHCP and DNS
replies would reach my machine.  And I could still browse the internet.

When I installed the Public Beta today, I again set my system to "High" security.

Actual Results:    Even though I had defined my other local home machines in my
/etc/hosts file, I could only talk to the other local boxes using its IP
address.  Could ping them by name, but could not ssh to them.  I couldn't ping
or browse anything on the internet.

I turned off the firewall, and I could ssh to my other local machines by name
and also browse the web.  Turning back on iptables & setting the security back
down to "Medium" kept everything working.


Expected Results:  Should have been able to browse the web and ssh to my other
local boxes with security set to "high".

Additional info:

Maybe this is intentional or maybe not.  But it's different behavior than RH7.3,
so I'll report it as a bug.

Comment 1 Jay Turner 2002-07-08 17:41:38 UTC
*** Bug 67575 has been marked as a duplicate of this bug. ***

Comment 2 Bill Nottingham 2002-07-17 05:00:21 UTC

*** This bug has been marked as a duplicate of 68368 ***

Comment 3 Michael Fulbright 2002-12-20 17:38:25 UTC
Time tracking values updated


Note You need to log in before you can comment on or make changes to this bug.