How to put the following rules in shorewall? iptables -I INPUT -d 172.25.5.192/28 -j ACCEPT iptables -I OUTPUT -d 172.25.5.192/28 -j ACCEPT iptables -I FORWARD -d 172.25.5.192/28 -j ACCEPT iptables -I INPUT -s 172.25.5.192/28 -j ACCEPT iptables -I OUTPUT -s 172.25.5.192/28 -j ACCEPT iptables -I FORWARD -s 172.25.5.192/28 -j ACCEPT thanks ------------------------------------------------------------------------------ Increase Visibility of Your 3D Game App & Earn a Chance To Win $500! Tap into the largest installed PC base & get more eyes on your game by optimizing for Intel(R) Graphics Technology. Get started today with the Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs. http://p.sf.net/sfu/intelisp-dev2dev
On 12/1/10 10:55 AM, Orlandinei Vujanski wrote:> How to put the following rules in shorewall? > > iptables -I INPUT -d 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT > > iptables -I OUTPUT -d 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT > > iptables -I FORWARD -d 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT > > > > iptables -I INPUT -s 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT > > iptables -I OUTPUT -s 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT > > iptables -I FORWARD -s 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT1) Uninstall Shorewall. 2) Type those commands at a root shell prompt. If you followed the proper Shorewall QuickStart Guide (http://www.shorewall.net/shorewall_quickstart_guide.htm -- you probably want the two-interface version), then you should have a firewall that will not produce the log messages that you are seeing. Given that you *are* seeing those messages, you have done something wrong. If you will forward us the documentation we ask for (THE OUTPUT OF ''shorewall dump''!!!!!!!!!), we will try to help you. Otherwise, you are just wasting your time and ours. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Increase Visibility of Your 3D Game App & Earn a Chance To Win $500! Tap into the largest installed PC base & get more eyes on your game by optimizing for Intel(R) Graphics Technology. Get started today with the Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs. http://p.sf.net/sfu/intelisp-dev2dev
Do not want to remove Shorewall Tom, I want to pass these commands iptables shorewall, how? 2010/12/1 Tom Eastep <teastep@shorewall.net>> On 12/1/10 10:55 AM, Orlandinei Vujanski wrote: > > How to put the following rules in shorewall? > > > > iptables -I INPUT -d 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT > > > > iptables -I OUTPUT -d 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT > > > > iptables -I FORWARD -d 172.25.5.192/28 <http://172.25.5.192/28> -j > ACCEPT > > > > > > > > iptables -I INPUT -s 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT > > > > iptables -I OUTPUT -s 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT > > > > iptables -I FORWARD -s 172.25.5.192/28 <http://172.25.5.192/28> -j > ACCEPT > > 1) Uninstall Shorewall. > 2) Type those commands at a root shell prompt. > > If you followed the proper Shorewall QuickStart Guide > (http://www.shorewall.net/shorewall_quickstart_guide.htm -- you probably > want the two-interface version), then you should have a firewall that > will not produce the log messages that you are seeing. Given that you > *are* seeing those messages, you have done something wrong. If you will > forward us the documentation we ask for (THE OUTPUT OF ''shorewall > dump''!!!!!!!!!), we will try to help you. Otherwise, you are just > wasting your time and ours. > > -Tom > -- > Tom Eastep \ When I die, I want to go like my Grandfather who > Shoreline, \ died peacefully in his sleep. Not screaming like > Washington, USA \ all of the passengers in his car > http://shorewall.net \________________________________________________ > > > > ------------------------------------------------------------------------------ > Increase Visibility of Your 3D Game App & Earn a Chance To Win $500! > Tap into the largest installed PC base & get more eyes on your game by > optimizing for Intel(R) Graphics Technology. Get started today with the > Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs. > http://p.sf.net/sfu/intelisp-dev2dev > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users > >------------------------------------------------------------------------------ Increase Visibility of Your 3D Game App & Earn a Chance To Win $500! Tap into the largest installed PC base & get more eyes on your game by optimizing for Intel(R) Graphics Technology. Get started today with the Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs. http://p.sf.net/sfu/intelisp-dev2dev
On 12/01/2010 11:35 AM, Orlandinei Vujanski wrote:> Do not want to remove Shorewall Tom, I want to pass these commands iptables > shorewall, how?Please read what I wrote. You cannot pass those commands to Shorewall and without knowing how you have configured your firewall, I can''t tell you anything more. PLEASE SEND ME THE OUTPUT OF ''shorewall dump'' AS AN ATTACHMENT AND I WILL TRY TO HELP YOU! -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Increase Visibility of Your 3D Game App & Earn a Chance To Win $500! Tap into the largest installed PC base & get more eyes on your game by optimizing for Intel(R) Graphics Technology. Get started today with the Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs. http://p.sf.net/sfu/intelisp-dev2dev
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Le 01.12.2010 20:27, Tom Eastep a écrit :> On 12/1/10 10:55 AM, Orlandinei Vujanski wrote: >> How to put the following rules in shorewall? >> >> iptables -I INPUT -d 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT >> >> iptables -I OUTPUT -d 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT >> >> iptables -I FORWARD -d 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT >> >> >> >> iptables -I INPUT -s 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT >> >> iptables -I OUTPUT -s 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT >> >> iptables -I FORWARD -s 172.25.5.192/28 <http://172.25.5.192/28> -j ACCEPT > > 1) Uninstall Shorewall. > 2) Type those commands at a root shell prompt. > > If you followed the proper Shorewall QuickStart Guide > (http://www.shorewall.net/shorewall_quickstart_guide.htm -- you probably > want the two-interface version), then you should have a firewall that > will not produce the log messages that you are seeing. Given that you > *are* seeing those messages, you have done something wrong. If you will > forward us the documentation we ask for (THE OUTPUT OF ''shorewall > dump''!!!!!!!!!), we will try to help you. Otherwise, you are just > wasting your time and ours. > > -Tom > >its allready simplicime create 2 interfaces - -- http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x092164A7 gpg --keyserver pgp.mit.edu --recv-key 092164A7 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/ iD8DBQFM9qZatXI/OwkhZKcRArtDAJwKE5ZsU1ItWjYnvtMw7Ec3566E0QCcD72l d4163sLGPqqNo4ClrWOD3zY=AtyM -----END PGP SIGNATURE----- ------------------------------------------------------------------------------ Increase Visibility of Your 3D Game App & Earn a Chance To Win $500! Tap into the largest installed PC base & get more eyes on your game by optimizing for Intel(R) Graphics Technology. Get started today with the Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs. http://p.sf.net/sfu/intelisp-dev2dev
On 12/01/2010 11:45 AM, Tom Eastep wrote:> On 12/01/2010 11:35 AM, Orlandinei Vujanski wrote: >> Do not want to remove Shorewall Tom, I want to pass these commands iptables >> shorewall, how? > > Please read what I wrote. You cannot pass those commands to Shorewall and > without knowing how you have configured your firewall, I can''t tell you > anything more. > > PLEASE SEND ME THE OUTPUT OF ''shorewall dump'' AS AN ATTACHMENT AND I WILL > TRY TO HELP YOU!And please send it to me privately so that it doesn''t get delayed by the Sourceforge list server for being too large. Thanks, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Increase Visibility of Your 3D Game App & Earn a Chance To Win $500! Tap into the largest installed PC base & get more eyes on your game by optimizing for Intel(R) Graphics Technology. Get started today with the Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs. http://p.sf.net/sfu/intelisp-dev2dev