[Shorewall-users] Policy Rules not working as expected (fwd)

Gilson Soares g.soares@datacraft.com.br
Fri, 26 Apr 2002 09:48:11 -0300


At 25/4/2002 20:17, you wrote:
 > policy file:
 >
 > fw              net             ACCEPT
 > net             all             DROP            info
 > all             all             REJECT          info
 >
 > rules file:
 >
 > DROP            net       fw            tcp     113
 > ACCEPT          net     fw              tcp     80      #HTTP server
 > ACCEPT          net     fw              tcp     22      #SSH server

 > ACCEPT          fw      net             udp     137:139 #SAMBA
 > ACCEPT          fw      net             tcp     137,139    #SAMBA

These two are useless because the POLICY from fw to net is ACCEPT.

 > ACCEPT          net     fw              udp     137:139    #SAMBA
 > ACCEPT          net     fw              tcp     137,139    #SAMBA
 > ACCEPT          net     fw              tcp     6346    #Gnutella

-Gilson