On 01/13/2011 07:30 PM, dave perry wrote: > > POSTROUTING chain rules > /sbin/iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE > /sbin/iptables -A FORWARD -s 192.168.1.0/24 -j ACCEPT > /sbin/iptables -A FORWARD -d 192.168.1.0/24 -j ACCEPT > /sbin/iptables -A FORWARD -s ! 192.168.1.0/24 -j DROP > > Any reason you don't drop everything by default in which case the rule is redundant ? Or do you and you're being super careful ? iptables -P FORWARD DROP # etc for all tables -- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
