From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux i586; en-US; rv:1.0.1) Gecko/20020809 Description of problem: I ran lokkit from an SSH session, requesting high security and an open SSH port. Listing iptables afterwards showed that all ports were open with all protocols. Version-Release number of selected component (if applicable): lokkit-0.50-17 How reproducible: Always Steps to Reproduce: 1. From a virtual terminal, enter "lokkit". 2. Select "high" and "customize" 3. Select SSH. 4. Select OK 5. Select OK 6. iptables --list Actual Results: The first few lines for the RH-Lokkit-0-50-INPUT table show the following: target prot opt source destination ACCEPT tcp -- anywhere anywhere tcp dpt:ssh flags:SYN,RST,ACK/SYN ACCEPT all -- anywhere anywhere Expected Results: Instead of ACCEPT all -- anywhere anywhere I expect to see something like the following to permit X to run: ACCEPT tcp -- localhost.localdomain localhost.localdomain ACCEPT udp -- localhost.localdomain localhost.localdomain Additional info:
That 'anywhere' line is for traffic over the loopback interface.