[Root @ ucit ~] # More/etc/sysconfig/iptables
# Firewall configuration written by system-config-securitylevel
# Manual customization of this file is not recommended.
* Filter
: Input accept [0: 0]
: Forward accept [0: 0]
: Output accept [0: 0]
: RH-Firewall-1-INPUT-[0: 0]
-A input-J RH-Firewall-1-INPUT
-A forward-J RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT-I lo-J accept
-A RH-Firewall-1-INPUT-p icmp -- ICMP-type any-J accept
-An RH-Firewall-1-INPUT-P 50-J accept
-An RH-Firewall-1-INPUT-P 51-J accept
-A RH-Firewall-1-INPUT-M state -- State established, related-J accept
-A RH-Firewall-1-INPUT-M state -- state new-m tcp-p tcp -- dport 21-J accept
-A RH-Firewall-1-INPUT-M state -- state new-m tcp-p tcp -- dport 22-J accept
-A RH-Firewall-1-INPUT-M state -- state new-m tcp-p tcp -- dport 443-J accept
-A RH-Firewall-1-INPUT-M state -- state new-m tcp-p tcp -- dport 5901-J accept
-A RH-Firewall-1-INPUT-M state -- state new-m tcp-p tcp -- dport 1521-J accept
-A RH-Firewall-1-INPUT-M state -- state new-m tcp-p tcp -- dport 80-J accept
-A RH-Firewall-1-INPUT-M state -- state new-m tcp-p tcp -- dport 445-J accept
-A RH-Firewall-1-INPUT-J reject -- reject-with ICMP-host-prohibited
Commit
* Nat
: Prerouting accept [0: 0]
: Postrouting accept [0: 0]
: Output accept [0: 0]
-A postrouting-O eth0-J Masquerade
Commit
Allow port 80 to allow remote access from VNC
