Re: routing_based_on_port/services

From: Phil Dyer (phil_at_dyermaker.org)
Date: 10/07/05

Next message: tigerblue_at_puzzleapuma.de: "httpd and port 7200"

Previous message: David Ballester - Kern Pharma: "Re: routing_based_on_port/services"
In reply to: Sven-Åke Larsson: "RE: routing_based_on_port/services"
Next in thread: David Ballester - Kern Pharma: "Re: routing_based_on_port/services"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 07 Oct 2005 15:47:37 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sven-Åke Larsson said:
>
> Even though this is a great solution with a lot of options there was a post
> from George Njoku with two different forward rules. Shouldn't it work? At
> least it's simple.
>

No, pretty sure it won't. George posted FORWARD rules. FORWARD does not
determine routing interfaces. Routing determines FORWARD interfaces.

You would still set the ACCEPT rules on the established traffic as
George demonstrates, but you can't do it just with the FORWARD chains.

- --

phil

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (MingW32)
Comment: Public Key: http://www.dyermaker.org/gpgkey

iD8DBQFDRtDZGbd/rBLcaFwRAspFAJ4tA3QITUuwY39r7HFjbZ2RWWS51gCgiRdn
MbhDtxDvFBiHdSuJuWart5A=
=tp22
-----END PGP SIGNATURE-----

Next message: tigerblue_at_puzzleapuma.de: "httpd and port 7200"

Previous message: David Ballester - Kern Pharma: "Re: routing_based_on_port/services"
In reply to: Sven-Åke Larsson: "RE: routing_based_on_port/services"
Next in thread: David Ballester - Kern Pharma: "Re: routing_based_on_port/services"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]