l i n u x - u s e r s - g r o u p - o f - d a v i s
L U G O D
 
Next Meeting:
November 4: Social gathering
Next Installfest:
TBD
Latest News:
Oct. 24: LUGOD election season has begun!
Page last updated:
2001 Dec 30 17:03

The following is an archive of a post made to our 'vox-tech mailing list' by one of its subscribers.

Report this post as spam:

(Enter your email address)
Re: [vox-tech] firewall (ipchains)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [vox-tech] firewall (ipchains)



gabe,

i haven't looked at your script, but just wanted to point out that ipchains
is being phased out.  support in the kernel will disappear sooner or later.

just thought you might want to know before spending any significant amount of
time on learning ipchains.

the new paradigm is "netfilter".

pete

On Wed 25 Apr 01,  3:48 PM, Gabriel Rosa said: 
> 
> My forwarding works fine. I'm using the stock kernel for now, and I
> believe it has ip_forwarding and whatnot enabled by default.
> 
> I bet i'm doing something silly with the rules.
> I wish this was more intuitive :)
> 
> -Gabe
> 
> On Wed, 25 Apr 2001, Jan Wynholds wrote:
> 
> > Hey Gabe:
> >
> > I know for iptables you have to echo 1 to the special file
> >
> > /proc/sys/net/ipv4/ip_forward
> >
> > With all my ipchains/iptables scripts, at the very top I have:
> >
> > IPC = /usr/local/sbin/ipchains
> >
> > echo "1" > /proc/sys/net/ipv4/ip_forward
> >
> > $IPC -f ACCEPT
> > $IPC -f FORWARD
> >
> > <SNIP>
> >
> > I am talking about redhatland here, but the same might apply to debian.  Dunno
> > tho.  I know that in redhatland, you _must_ echo that 1 to that file, otherwise
> > it doesn't matter what kind of rules you set up, because forwarding is not
> > 'going on'.


LinkedIn
LUGOD Group on LinkedIn
Sign up for LUGOD event announcements
Your email address:
facebook
LUGOD Group on Facebook
'Like' LUGOD on Facebook:

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.

Sponsored in part by:
Appahost Applications
For a significant contribution towards our projector, and a generous donation to allow us to continue meeting at the Davis Library.