On Fri, Feb 08, 2002 at 11:25:11PM +0100, Olaf Zaplinski wrote:
> Hi all,
Hi Olaf.
Please direct iptables usage questions to the netfilter@lists.samba.org
mailinglist (as stated in the MAINTAINERS file).
> my self made firewall at $HOME (iptables based) works fine, but the
> accounting data it reports every day is not as expected.
[...]
>From what you have written, I can draw the assumption that you think
forwarded packets go through INPUT or OUTPUT? Then you're thinking in
2.2.x ipchains terms.
In 2.4.x (== iptables) firewalling, forwarded packets go only through
output.
> So I built the 2.4.13 kernel to test that and got dozens of rejects in the
> logs, e.g. UDP connects to the DNS forwarders... so I could not test the
> accounting stuff. I switched back to 2.4.17 and everything was fine again.
>
> So what's wrong with iptables-1.2.4 userland tools and 2.4.[13|17]? Why is
> iptables-rules@2.4.13 not the same as iptables-rules@2.4.17?
Maybe something else in your setup was different? There is no difference
between the filter table in 2.4.13 and 2.4.17.
> Olaf
-- Live long and prosper - Harald Welte / laforge@gnumonks.org http://www.gnumonks.org/ ============================================================================ GCS/E/IT d- s-: a-- C+++ UL++++$ P+++ L++++$ E--- W- N++ o? K- w--- O- M+ V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h--- r++ y+(*) - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Fri Feb 15 2002 - 21:00:25 EST