https://bugzilla.novell.com/show_bug.cgi?id=677884 https://bugzilla.novell.com/show_bug.cgi?id=677884#c0 Summary: susefirewall does not put eth0 to internal zone by default Classification: openSUSE Product: openSUSE 11.3 Version: Final Platform: Other OS/Version: Other Status: NEW Severity: Major Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: ensonic@sonicpulse.de QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; U; Linux i686; de; rv:1.9.2.13) Gecko/20101203 SUSE/3.6.13-0.2.1 Firefox/3.6.13 I am behint a nat router, my eth0 is using a 192.168.x.x network address. As susefirewall is always enabled by default it should configure eth0 to the internal zone. Otherwise applications in the local network (also behind the nat router) won't work my default (and it is not visible to the user why). Reproducible: Always Steps to Reproduce: 1. use the similar network setup 2. use netcat to simulate e.g. udp trafic between two computer or the same computer Actual Results: when running netcat twice on the same machine, data gets echoed when running netcat on a different machine in the local network it fails Expected Results: also echo the data for machines in the local network, but not applying firewall filtering I classify this as critical as it is big usability issue for not technical minded people. There is no indication except /var/log/firewall that network trafiic is blocked and most people would not even look there as in this case it is totally unexpected. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.