| 1 |
On Mon, 10 Sep 2007 22:48:20 +0200 |
| 2 |
Hans-Werner Hilse <hilse@×××.de> wrote: |
| 3 |
|
| 4 |
> is on what computer? On the "server" (I guess it's the router) the |
| 5 |
> last line would effectively prevent routing for the client (but I |
| 6 |
> don't know why ICMP works...). I would suggest starting without it |
| 7 |
> and then setting up proper rules -- and then setting the chain's |
| 8 |
> policy to DROP (plus some REJECT rules for proper answers). |
| 9 |
|
| 10 |
I agree, I thought your firewall rules were a little wacky too. These |
| 11 |
rules only route to one host. generally you'd want to route to a whole |
| 12 |
network, not just one host. |
| 13 |
|
| 14 |
> (but I don't know why ICMP works...). |
| 15 |
|
| 16 |
-- |
| 17 |
gentoo-user@g.o mailing list |
Archives