Re: [vox-tech] firewall (ipchains)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [vox-tech] firewall (ipchains)
gabe,
i haven't looked at your script, but just wanted to point out that ipchains
is being phased out. support in the kernel will disappear sooner or later.
just thought you might want to know before spending any significant amount of
time on learning ipchains.
the new paradigm is "netfilter".
pete
On Wed 25 Apr 01, 3:48 PM, Gabriel Rosa said:
>
> My forwarding works fine. I'm using the stock kernel for now, and I
> believe it has ip_forwarding and whatnot enabled by default.
>
> I bet i'm doing something silly with the rules.
> I wish this was more intuitive :)
>
> -Gabe
>
> On Wed, 25 Apr 2001, Jan Wynholds wrote:
>
> > Hey Gabe:
> >
> > I know for iptables you have to echo 1 to the special file
> >
> > /proc/sys/net/ipv4/ip_forward
> >
> > With all my ipchains/iptables scripts, at the very top I have:
> >
> > IPC = /usr/local/sbin/ipchains
> >
> > echo "1" > /proc/sys/net/ipv4/ip_forward
> >
> > $IPC -f ACCEPT
> > $IPC -f FORWARD
> >
> > <SNIP>
> >
> > I am talking about redhatland here, but the same might apply to debian. Dunno
> > tho. I know that in redhatland, you _must_ echo that 1 to that file, otherwise
> > it doesn't matter what kind of rules you set up, because forwarding is not
> > 'going on'.
|
