Unable to login SquirrelMail

[billymayday]

You don't have an output rule 5 - do you mean rules 3 & 4?

Looks to me like output 3 is your main problem it's blocking an output stream on localhost.

Also, my mistake, but switch input rules 6 & 7 (there's no point having an allow after rejecting all).

Look at the listing you added. Iptables rules basically work down through the relvant chain from top to bottom and implement the first rule that matches the packet.

[satimis]

You don't have an output rule 5 - do you mean rules 3 & 4?

Looks to me like output 3 is your main problem it's blocking an output stream on localhost.

Sorry for my mistake. They are rules 3 and 4

Code:

# reject all other traffic from localhost
iptables -I OUTPUT 3 -j REJECT -s 127.0.0.1 --reject-with icmp-port-unreachable

# reject all other traffic from the management interface NIC
iptables -I OUTPUT 4 -j REJECT -s 220.232.213.178 --reject-with icmp-port-unreachable

I can't comment out only rule 3. It complains

$ sudo /etc/init.d/rc.local start

Code:

 * Running local boot scripts (/etc/rc.local)                                                                iptables: Index of insertion too big
                                                                                                      [fail]

Others noted


B.R.
satimis

[billymayday]

You probably need to rename insertion 4 to insertion 3

[satimis]

You probably need to rename insertion 4 to insertion 3

comment out rule 3 and change insertion 4 to 3 on rule 4. It works. Login squirrelmail w/o problem.


Thanks.


satimis

[billymayday]

Whoo hoo

well done