Thread: IPTables problems

hi

i'm having problems vps running ubuntu server 11.04 x64.

first can't use sudo apt-get update, because ubuntu can't connect repositories (iptables blocking).

, can't put ts3 online, because of dns related problem (iptables blocking).

i'm using follow rules:

code:

input drop  forward drop  output drop      input:      iptables -a input -p tcp --dport 22 -j accept  iptables -a input -p tcp --dport 7777 -j accept  iptables -a input -p udp --dport 7777 -j accept  iptables -a input -p tcp --dport 9987 -j accept  iptables -a input -p udp --dport 9987 -j accept  iptables -a input -p tcp --dport 10011 -j accept  iptables -a input -p udp --dport 10011 -j accept  iptables -a input -p tcp --dport 30033 -j accept  iptables -a input -p udp --dport 30033 -j accept  iptables -a input -p tcp --dport 25555 -j accept  iptables -a input -p udp --dport 25555 -j accept  iptables -a input -p tcp --dport 41144 -j accept  iptables -a input -p udp --dport 2010 -j accept  iptables -a input -p tcp --dport 2008 -j accept  iptables -a input -p tcp -m tcp --sport 53 --dport 1024:65535 -m state --state established -j accept  iptables -a input -p udp -m udp --sport 53 --dport 1024:65535 -m state --state established -j accept    output:      iptables -a output -p tcp --sport 22 -j accept  iptables -a output -p tcp --sport 7777 -j accept  iptables -a output -p udp --sport 7777 -j accept  iptables -a output -p tcp --sport 9987 -j accept  iptables -a output -p udp --sport 9987 -j accept  iptables -a output -p tcp --sport 10011 -j accept  iptables -a output -p udp --sport 10011 -j accept  iptables -a output -p tcp --sport 30033 -j accept  iptables -a output -p udp --sport 30033 -j accept  iptables -a output -p tcp --sport 25555 -j accept  iptables -a output -p udp --sport 25555 -j accept  iptables -a output -p tcp --sport 41144 -j accept  iptables -a output -p udp --sport 2010 -j accept  iptables -a output -p tcp --sport 2008 -j accept  iptables -a output -p tcp -m tcp --sport 1024:65535 --dport 53 -m state --state new,established -j accept  iptables -a output -p udp -m udp --sport 1024:65535 --dport 53 -m state --state new,established -j accept

i want necessary ports accepting connectons, think it's there (teamspeak3 ports).

need blocked, because before rules vps being attacked , can lot.

hi , welcome ubuntu forums.

iptables rule set odd.
there no return path establshed related packet created via output chain. don't see output path apt-get work.

realize reply incomplete. might came later , add some.

suggest further reading iptables.
reference: http://bodhizazen.net/tutorials/iptables/
there many other references.

edit: how vps ip address? static? (there doesn't seem path dhcp stuff)

Forum The Ubuntu Forum Community Ubuntu Specialised Support Ubuntu Servers, Cloud and Juju Server Platforms [ubuntu] IPTables problems

Ubuntu