ok i have tried this 100 times here is my policy file loc net ACCEPT net fw DROP info all all REJECT info and all i want is all request to go to the firewall and see if its allow in to the server if not reject but this is not working what is wrong or am i in the wrong file? --------------------------------------------------------------------------------
>ok i have tried this 100 times >here is my policy file >loc net ACCEPT >net fw DROP info >all all REJECT info > >and all i want is all request to go to the firewall and see if itsallow in >to the server if not reject>but this is not working what is wrong or am i in the wrong file?This policy means: All traffic from the computers on your local network to the outside net (internet I assume) is allowed. Everything else is rejected. Exactly what do you want? Most likely you want to make exceptions to these policies via the "rules" file.
On 8 Jul 2003 at 2:01, William McInnis wrote:> ok i have tried this 100 times > here is my policy file > loc net ACCEPT > net fw DROP info > all all REJECT info > > and all i want is all request to go to the firewall and see if its > allow in to the server if not reject but this is not working whatis> wrong or am i in the wrong file?Well its probably working better than you might think because your mail server was unreachable most of yesterday. I tried to reply directly to you several times. dragonbox.net is not reachable, how DO you get your mail? What are you seeing in /var/log/messages? Have you browsed the FAQ? -- ______________________________________ John Andersen NORCOM / Juneau, Alaska http://www.screenio.com/ (907) 790-3386 ._______________________________________ John S. Andersen NORCOM mailto:JAndersen@norcomsoftware.com Juneau, Alaska http://www.screenio.com/
On Mon, 2003-07-07 at 23:01, William McInnis wrote:> ok i have tried this 100 times > here is my policy file > loc net ACCEPT > net fw DROP info > all all REJECT info > > and all i want is all request to go to the firewall and see if its allow in to the server if not reject > but this is not working what is wrong or am i in the wrong file?Sounds like you need to start by reading the relevant QuickStart Guide: http://www.shorewall.net/shorewall_quickstart_guide.htm -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net