[plug] ipchains
Gavin Corfield
gavin at twobluedots.com.au
Wed Jun 27 12:17:10 WST 2001
Hi all,
I'm trying to set up the ipchains for a gateway server. I want to allow
all traffinc on the loca network. I am trying to enable the server to
ping all machines on the LAN, however having run:
ipchains -P input DENY
ipchains -P output DENY
ipchains -P forward DENY
I am having trouble enabling the server to ping other machines.
What I am having trouble getting my head round is:
When I execute ping host_on_local_net what is actually happening? Is it:
localhost --> packet to kernel sorce 127.0.0.1 --> forward packet to net
card
in which case I need to forward the packet with something like:
ipchains -A forward -p all -s localhost -d server.localnet -j ACCEPT -i
lo
or:
server.localnet --> netcard
in which case I need to ouptut the packet with something like
ipchains -A output -p all -s server.localnet -d local_net -i eth0
I hope that's clear thanks in advance
gavin
More information about the plug
mailing list