Mailinglist Archive: opensuse-security (331 mails)

< Previous Next >
Re: [suse-security] SuSEfirewall
  • From: "J. Steingraeber" <bbe@xxxxxxxxxxxxxxxx>
  • Date: Tue, 12 Sep 2000 10:09:42 +0200
  • Message-id: <39BDE4C6.F6D19055@xxxxxxxxxxxxxxxx>
On Mon, 11 Sep 2000 11:28:19 +0200, Daniel Jung wrote

> ipchains -L forward now looks like:
> Chain forward (policy DENY):
> target prot opt source destination
> ports
> fw_masq all ------ 192.168.11.0/24 0.0.0.0/0 n/a
> fw_masq all ------ 192.168.3.0/24 0.0.0.0/0 n/a
> ACCEPT all ------ 192.168.11.0/24 192.168.3.0/24 n/a
> ACCEPT all ------ 192.168.3.0/24 192.168.11.0/24 n/a
> DENY all ----l- 0.0.0.0/0 0.0.0.0/0 n/a

I'm a bit confused. In my understanding the first two fw_masq rules do
match allways before the ACCEPT rules are reached. So I can not see what
the ACCEPT rules actually do.

Have I missed something? Can someone enlighten me, please?

Yours
Johannes

< Previous Next >