search for: roul

Hi All! I need to deploy a bridge firewall using linux kernel 2.6. I had success using kernel 2.4 plus br-nf patch. But the configuration does not work with kernel 2.6. If the default policy for the iptables FORWARD chain is ACCEPT I have a bridge. If iptables FORWARD chain is DROP I have an insulator (no packet flows). Any hint? I did some google search and in many places they say "kernel

...10: from all lookup main 34: from all fwmark 50 lookup zew 50: from 80.48.56.70 lookup zew 60: from 192.168.200.10 lookup wew 100: from all lookup brama 32766: from all lookup main 32767: from all lookup default it should working fine but it''s not with this sets of rouls all is ok. lucy ~ # ip rule 0: from all lookup local 10: from all lookup main 34: from all to 217.17.45.128/27 lookup zew 50: from 80.48.56.70 lookup zew 60: from 192.168.200.10 lookup wew 100: from all lookup brama 32766: from all lookup main 32767: from all lookup defau...

...1.piratenpartei-bayern.de[88.198.212.215] Jan 26 13:03:31 vml000087 postfix/smtpd[10268]: disconnect from mx1.piratenpartei-bayern.de[88.198.212.215] so far so good, this work'ed fine the last 5 years ... Now I've a second network with a CentOS 7 base firewall. I've tried to adapt the roules I've mad on the old firewall. ----------------------8<----------------------8<----------------------8< # cat /etc/firewalld/zones/public.xml <?xml version="1.0" encoding="utf-8"?> <zone> <short>Public</short> <description>For use...

...eway with IP address 192.168.1.6 I have a old notebook (OS = WinXP) that is "connected" via WLAN to the new box and this has 192.168.1.4 as IP address; both can ping each other the VM and this notebook; here the questions: should I use eth0 and wlan0 or br0 in the iptables and ip6tables roules? why is it possible to ping the VM or the notebook from the new box, but not the other way? Thanks for any help; Greetings, Walter

...JECT info #LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE ROUTESTOPED: ---------------------------------------------------------------------------- ------------------ #INTERFACE HOST(S) eth0 - #eth1 IP POINTERCOM #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE ROULES: ---------------------------------------------------------------------------- ------------------ ACCEPT fw net tcp 53 ACCEPT fw net udp 53 AllowDNS loc fw AllowDNS fw net # Allow Ping To And From Firewall # ACCEPT loc fw icmp 8 ACCEPT net fw icmp 8 ACCEPT fw loc icmp ACCEPT fw...