Displaying 1 result from an estimated 1 matches for "swimlan".
Did you mean:
silan
2015 May 09
1
openvpn and firewalld
...direct rules. Firewalld on CentOS 7 defaults to a drop rule for
> the FORWARD chain which my previous server didn't have. So I
> needed to put the rules in the FORWARD chain rather than the
> INPUT chain.
>
This does not make sense to me. The INPUT, OUTPUT and FORWARD chains
are swimlanes. A packet starts out, following PREROUTING, in exactly
one of these three and never leaves it. It can JUMP to shared chains
but it will always return to its original chain until ACCEPTed,
DROPped or REJECTed.
--
*** e-Mail is NOT a SECURE channel ***
Do NOT transmit...