linux# vi/etc/sysconfig/iptables configuration file

*filter
: INPUT ACCEPT [0:0]
: FORWARD ACCEPT [0:0]
: OUTPUT ACCEPT [0:0]
: Rh-firewall-1-input-[0:0]
-A input-j Rh-firewall-1-input
-A forward-j Rh-firewall-1-input
-A rh-firewall-1-input-i lo-j ACCEPT
-A rh-firewall-1-input-p ICMP--icmp-type any-j ACCEPT
-A rh-firewall-1-input-p 50-j ACCEPT
-A rh-firewall-1-input-p 51-j ACCEPT
-A rh-firewall-1-input-p UDP--dport 5353-d 224.0.0.251-j ACCEPT
-A rh-firewall-1-input-p udp-m UDP--dport 631-j ACCEPT
-A rh-firewall-1-input-p tcp-m tcp--dport 631-j ACCEPT
-A rh-firewall-1-input-m state--state established,related-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 21-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 20-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 25-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 2049-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 22-j ACCEPT
-A rh-firewall-1-input-m state--state new-m udp-p UDP--dport 8181-j ACCEPT
-A rh-firewall-1-input-m state--state new-m udp-p UDP--dport 138-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 139-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 445-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 443-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 23-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 80-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 5601-j ACCEPT
-A rh-firewall-1-input-m state--state new-m tcp-p TCP--dport 5602-j ACCEPT
-A rh-firewall-1-input-j REJECT--reject-with icmp-host-prohibited
COMMIT