Hi strange behaviour of iptables on a CentOS 7.0 machine:
The following rule is in the iptables of said machine:
[root@myserver ~]# iptables -L -v -n –line-numbers |grep 175\.
9 9 456 DROP all — * * 126.96.36.199/16
The corresponding enty in /etc/sysconfig/iptables looks like:
[root@myserver ~]# grep 175 /etc/sysconfig/iptables
-A INPUT -s 188.8.131.52/16 -j DROP
The rule must be there since ages, because it has number 9 out of 76
Today, on the same machine (I rechecked it to make sure not to confound machines), I see the following extract of the ftplog:
saying that from this IP addresse there have been this many connections to the ftp server on that machine during the last two days, which means that the iptables haven’t dropped the connection to the machine. As far as I know, the ftp server is behind the iptables. I also checked to see in man iptables, wheather the IP address is represented correctly.
What im I missing?
thanks in advance