Christian Wagener wrote:
Jul 9 21:34:22 omicron kernel: SFW2-IN-ILL-TARGET IN=ippp0 OUT= MAC= SRC=192.168.55.200 DST=192.168.55.100 LEN=6 0 TOS=0x00 PREC=0x00 TTL=64 ID=48935 DF PROTO=TCP SPT=1032 DPT=22 WINDOW=5840 RES=0x00 SYN URGP=0 OPT (020405B404 02080A01E052360000000001030302)
Try this?:
+--------- [ /etc/sysconfig/scripts/SuSEfirewall2-custom ] | for DEV in $FW_DEV_INT; do | for IP in $DEV_EXT; do | $IPTABLES -A INPUT -i $DEV -d $IP -j "ACCEPT" | done | done +---------
This code will fail as 9.3+ doesn't filter for IP addresses at all anymore (9.2 only if FW_ANTISPOOF="yes", default is "no"), it relies on rp_filter instead. Therefore DEV_EXT doesn't exist starting from 9.3. cu Ludwig -- (o_ Ludwig Nussel //\ SUSE LINUX Products GmbH, Development V_/_ http://www.suse.de/