9 May
2001
9 May
'01
17:33
But the input chain will be called, too.
If you want to filter masq'd connections and local connections on the firewall box seperately (i.e. to heavily restrict direct access to and from the firewall machine) having them in the same port range makes no sense, or am I wrong somehow?
So use a differently range and quit complaining about it. Sheesh. Personally I stick 'em in the same range and it works for me. BTW, little hint, forwarding rules...
- Martin
Kurt Seifried, seifried@securityportal.com Securityportal - your focal point for security on the 'net