[Primipassi] configurazione firestarter su ubuntu

hopfrog info@hopfrog.it
Ven 10 Mar 2006 07:52:23 CET 

Qualcuno puņ darmi una mano per configurare un firewall. Attualmento sto
provando FIRESTARTER ma una volta avviato mi impedisce la navigazione.
Riporto la configurazione (ottenuta con iptables -L):
Chain INBOUND (4 references)
target     prot opt source               destination
ACCEPT     tcp  --  anywhere             anywhere            state
RELATED,ESTABLISHED
ACCEPT     udp  --  anywhere             anywhere            state
RELATED,ESTABLISHED
ACCEPT     all  --  www.tiscali.it       anywhere
ACCEPT     all  --  0.0.85.106           anywhere
LSI        all  --  anywhere             anywhere

Chain INPUT (policy DROP)
target     prot opt source               destination
ACCEPT     tcp  --  nsr2.tiscali.it      anywhere            tcp
flags:!SYN,RST,ACK/SYN
ACCEPT     udp  --  nsr2.tiscali.it      anywhere
ACCEPT     all  --  anywhere             anywhere
ACCEPT     icmp --  anywhere             anywhere            limit: avg
10/sec burst 5
DROP       all  --  anywhere             255.255.255.255
DROP       all  --  anywhere            
host-84-220-55-16.cust-adsl.tiscali.it
DROP       all  --  BASE-ADDRESS.MCAST.NET/8  anywhere
DROP       all  --  anywhere             BASE-ADDRESS.MCAST.NET/8
DROP       all  --  255.255.255.255      anywhere
DROP       all  --  anywhere             0.0.0.0
DROP       all  --  anywhere             anywhere            state INVALID
LSI        all  -f  anywhere             anywhere            limit: avg
10/min burst 5
INBOUND    all  --  anywhere             anywhere
INBOUND    all  --  anywhere            
host-84-220-55-16.cust-adsl.tiscali.it
INBOUND    all  --  anywhere            
host-84-220-55-16.cust-adsl.tiscali.it
INBOUND    all  --  anywhere            
host-84-220-55-16.cust-adsl.tiscali.it
LOG_FILTER  all  --  anywhere             anywhere
LOG        all  --  anywhere             anywhere            LOG level
info prefix `Unknown Input'

Chain FORWARD (policy DROP)
target     prot opt source               destination
ACCEPT     icmp --  anywhere             anywhere            limit: avg
10/sec burst 5
TCPMSS     tcp  --  anywhere             anywhere            tcp
flags:SYN,RST/SYN TCPMSS clamp to PMTU
OUTBOUND   all  --  anywhere             anywhere
ACCEPT     tcp  --  anywhere            
host-84-220-55-16.cust-adsl.tiscali.it state RELATED,ESTABLISHED
ACCEPT     udp  --  anywhere            
host-84-220-55-16.cust-adsl.tiscali.it state RELATED,ESTABLISHED
LOG_FILTER  all  --  anywhere             anywhere
LOG        all  --  anywhere             anywhere            LOG level
info prefix `Unknown Forward'

Chain LOG_FILTER (5 references)
target     prot opt source               destination

Chain LSI (2 references)
target     prot opt source               destination
LOG_FILTER  all  --  anywhere             anywhere
LOG        tcp  --  anywhere             anywhere            tcp
flags:SYN,RST,ACK/SYN limit: avg 1/sec burst 5 LOG level info prefix
`Inbound '
DROP       tcp  --  anywhere             anywhere            tcp
flags:SYN,RST,ACK/SYN
LOG        tcp  --  anywhere             anywhere            tcp
flags:FIN,SYN,RST,ACK/RST limit: avg 1/sec burst 5 LOG level info prefix
`Inbound '
DROP       tcp  --  anywhere             anywhere            tcp
flags:FIN,SYN,RST,ACK/RST
LOG        icmp --  anywhere             anywhere            icmp
echo-request limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
DROP       icmp --  anywhere             anywhere            icmp
echo-request
LOG        all  --  anywhere             anywhere            limit: avg
5/sec burst 5 LOG level info prefix `Inbound '
DROP       all  --  anywhere             anywhere

Chain LSO (1 references)
target     prot opt source               destination
LOG_FILTER  all  --  anywhere             anywhere

Cosa devo correggere per poter accedere ad internet?
Grazie
Gfc

Maggiori informazioni sulla lista primipassi