[plug] Iptables Help - UDP
Onno Benschop
onno at itmaze.com.au
Fri Feb 4 15:06:50 WST 2005
Russell Steicke wrote:
>On Fri, Feb 04, 2005 at 02:38:23PM +0800, Cameron Patrick wrote:
>
>
>>Russell Steicke wrote:
>>
>>
>>
>>>Without reading through all your iptables rules, I guess that you'd
>>>need (at least) a rule like this:
>>>
>>> iptables -A INPUT -i eth0 -p udp --dport 500 -j ACCEPT
>>>
>>>
>>FORWARD, not INPUT, yeah? Unless you're running the VPN client on the
>>gateway machine (which is what I prefer to do) so that all machines on
>>the internal network can see the VPN without extra hassle. This does
>>make the iptables rules and routing tables more "fun". However, I did
>>learn a lot about TCP/IP in the process :)
>>
>>
>
>Ooh, yes, you're right. Packets go through one only of INPUT, FORWARD
>and OUTPUT.
>
You're all a bunch of geeks and that's all Greek to me - tongue firmly
planted somewhere...
--
Onno Benschop
Connected via Optus B3 at S34°32'27" - E146°24'35" (Leeton, NSW)
--
()/)/)() ..ASCII for Onno..
|>>? ..EBCDIC for Onno..
--- -. -. --- ..Morse for Onno..
Proudly supported by Skipper Trucks, Highway1, Concept AV, Sony Central, Dalcon
ITmaze - ABN: 56 178 057 063 - ph: 04 1219 8888 - onno at itmaze.com.au
More information about the plug
mailing list